Controls Testing Engineer

About The Position

Requirements

• 3+ years of experience in internal audit, compliance testing, risk management, or internal controls.
• Strong knowledge of information security and IT risk control frameworks (e.g., COSO, COBIT, NIST).
• Understanding of financial, operational, and IT control environments.
• Strong analytical skills with attention to detail and accuracy.
• Excellent written and verbal communication skills with the ability to present complex findings clearly.
• Bachelor's degree in information systems, or related field.

Nice To Haves

• Professional certifications such as CIA, CISSP, CISA, Microsoft certifications, or CRMA.
• Experience with GRC (Governance, Risk, and Compliance) tools.
• Banking or financial services industry experience.

Responsibilities

• Assist in definition of and execute testing procedures to assess the design and effectiveness of key internal controls across business units, technology, and operational processes.
• Ensure testing activities are aligned with regulatory standards (SOX, FFIEC, FDIC, etc.) and internal policies.
• Document test results, identify control deficiencies, and provide clear recommendations for remediation.
• Work closely with business process owners, auditors, compliance, and risk teams to ensure timely resolution of identified issues.
• Recommend enhancements to testing methodologies, control design, and risk management practices to strengthen the bank's control environment.
• Maintain awareness of industry regulatory environment and threat landscape.
• Prepare executive-ready reports, dashboards, and presentations for senior management and regulators, and information technology peers.
• Participate in ongoing monitoring and follow-up activities to confirm remediation effectiveness and sustainability.