Senior Auditor - CTO

About The Position

Requirements

• Bachelor's degree, or equivalent work experience
• Typically more than five years of applicable experience
• 3–7+ years of experience in Technology Audit, IT Risk, Internal Audit, or Consulting
• Foundational to strong understanding of IT risks, controls, and audit methodologies
• Experience with: Cloud computing (AWS, Azure), infrastructure, and networking
• APIs, system integrations, data protection, and authentication protocols
• Databases, Active Directory, and emerging technologies (e.g., AI)
• Familiarity with industry frameworks (COBIT, NIST, ITIL, ISO standards)
• Strong analytical skills, including data analysis and root cause identification
• Ability to manage competing priorities and deliver under tight timelines
• Excellent written and verbal communication skills, with the ability to translate technical risks into business insights
• This role requires working from a U.S. Bank location three (3) or more days per week.

Nice To Haves

• Professional certifications preferred (e.g., CISA, CIA, CISSP, CPA, AWS, Azure)

Responsibilities

• Execute end-to-end IT audits, including: IT General Controls (ITGCs), application controls, and key report validation
• System mapping, data flows, interfaces, and infrastructure controls
• Assess control design and effectiveness across areas such as: Cloud (AWS, Azure), infrastructure, and platforms
• SDLC, Agile, DevOps, and CI/CD pipelines
• ITIL processes and service management
• Identify control gaps, operational deficiencies, and root causes of risk exposure
• Collaborate with audit teams and stakeholders to define audit scope, objectives, and risk coverage
• Develop and execute risk-based test plans, including for emerging technologies
• Analyze technical configurations, process documentation, and data to support audit conclusions
• Identify risks arising from inadequate processes, systems, or human factors
• Provide practical, solution-oriented recommendations to mitigate risk and improve controls
• Support the development and sustainability of effective risk management frameworks
• Escalate risks appropriately and contribute to forward-looking risk identification
• Serve as a functional liaison between Technology, Line of Business, and Lines of Defense
• Build relationships with stakeholders, including senior management, to: Communicate audit scope, status, and results
• Deliver insights in a clear, concise, and business-relevant manner
• Collaborate across global teams and support enterprise-wide initiatives
• Manage multiple audit assignments in a fast-paced, dynamic environment
• Identify opportunities to enhance audit methodologies, processes, and tools
• Support internal initiatives aimed at operational excellence and capability uplift
• Ensure alignment with applicable laws, regulations, and internal policies
• Apply relevant frameworks and standards (e.g., COBIT, ITIL, NIST, ISO, FFIEC, OCC, COSO)

Benefits

• Healthcare (medical, dental, vision)
• Basic term and optional term life insurance
• Short-term and long-term disability
• Pregnancy disability and parental leave
• 401(k) and employer-funded retirement plan
• Paid vacation (from two to five weeks depending on salary grade and tenure)
• Up to 11 paid holiday opportunities
• Adoption assistance
• Sick and Safe Leave accruals of one hour for every 30 worked, up to 80 hours per calendar year unless otherwise provided by law
• Incentive and recognition programs
• Equity stock purchase
• 401(k) contribution and pension