Senior Cyber Security Auditor

About The Position

Requirements

• Working knowledge of IT General Controls, infrastructure components (e.g. Network infrastructure, Databases, Servers, Middleware, APIs, etc.), and IT risks.
• Knowledge of, or the ability to learn and research, IT regulations relevant to the banking industry.
• Time management skills and the ability to multi-task between Dedicated IT Audits, Integrated IT Audits, and Special IT Audit Projects while meeting deadlines.
• Extensive experience in providing management with observations and experience to improve business processes, increase operating efficiencies, and reduce operational, technology and financial risks.
• Bachelor’s degree in business technology, information systems, computer science, or the equivalent.
• Five to Ten years of IT Audit or industry experience.
• Holds a Certified Information Systems Auditor (CISA) or Certified Information System Security Professional (CISSP) professional designation.
• Strong work ethic and self-motivation to continue professional development.

Nice To Haves

• Certified Internal Auditor (CIA) professional is desirable.

Responsibilities

• Independently plan, execute, and report on comprehensive audits of IT Governance, Technology Architecture, Information Security, and core IT processes (e.g., Network Management, Data Loss Prevention, IT Asset Management, etc.).
• Execute the Audit Plan by understanding organization objectives, structure, policies, processes, internal controls, and external regulations; identifying risk areas; preparing audit scope and objectives; preparing audit programs focused on the underlying infrastructure and resilience streams at the bank.
• Support the IT Audit Manager and IT Audit Director in the development, planning, and budgeting of the IT Audit strategy.
• Serve as a subject matter expert on one or more key technology area(s) including Network, Databases, Cloud, Application Programming Interface (APIs), Middleware, DevOps and other emerging technologies.
• Exhibit a high level of objectivity in performing audits over key business systems, financial reporting systems, automated controls, and infrastructure across the bank.
• Function as team leader, in assignments involving multiple members of the IA team, as necessary.
• Assist in yearly testing of Sarbanes-Oxley IT key controls or Business Aligned IT Control Testing as required.
• Conduct retesting of previously identified audit and regulatory findings to verify that corrective actions have been successfully implemented.
• Document and memorialize the results of audits and special projects in quality work papers, memos, and reports. Promote effective communication and information exchange by holding status meetings; highlighting new and unresolved issues; reviewing working papers; preparing clear and concise final audit reports.
• Provide professional feedback to senior level management on IT risk, risk monitoring, internal control structure, and operating processes.
• Support external auditors by coordinating information requirements and participating in control walkthroughs. Perform data analytics to analyze and summarize key data and trends. Evaluate the banks’ compliance with key privacy practices such as GLBA and Mass Privacy laws. Stay up to date on industry best practices and regulatory changes by participating in educational opportunities (e.g. conferences, higher educational programs, webinars, networking events etc.). Build and maintain relationships with the Audit team and Management.
• Assist in the training of audit team members.

Benefits

• Competitive compensation with performance incentive awards
• Health Insurance
• Dental Insurance
• a 401K and DC Plan for your retirement
• LTD & Life Insurance
• Day Care Reimbursement
• Tuition Assistance for graduate and undergraduate programs
• an award winning Wellness program and much more!