Senior Auditor, Information Technology Audit - VP - IDB
New York, NY
About the Job
For more than 70 years, IDB Bank has made it our mission to be the best bank for our clients by putting their needs first, and the success we’ve enjoyed fundamentally comes down to our people. Here at IDB, you’ll work side by side with some of the most talented professionals in the industry who share a strong sense of teamwork and a passion for providing exceptional service down to the smallest detail. We offer a comprehensive benefits package that includes generous paid time off and the ability to participate in our medical coverage and 401(k) plan on your very first day with us. We are also committed to diversity and inclusion, and to providing all of our team members with an equal opportunity to succeed and make meaningful contributions within a work environment that is respectful, welcoming and inclusive.
Job DescriptionJob Summary
Execute information technology audits encompassing the areas of IT general controls, application controls, IT processes, project management and data integrity audit projects/initiatives utilizing information technology control frameworks, such as NIST CSF, ITIL, COBIT, and FFIEC, or other relevant regulatory guidance (e.g., NYSDFS 500, GLBA, etc.), where applicable.
Job Description
Essential functions include:
- Help prepare a risk-based audit program, document and execute test steps and high quality work papers for IT and integrated application audits, with alignment to current regulatory requirements and expectations (e.g. FFIEC, NYSDFS 500, GLBA, etc.) and emerging risks.
- Assist in the preparation of audit reports and draft findings.
- Stay abreast of industry IT trends to identify potential issues and risks, as well as relevant best practices, laws, rules and regulations impacting financial institutions and ensuring that the changes are incorporated into the audit planning and risk assessment process.
- Leverage knowledge of systems and data to perform and document all reviews in a manner consistent with acceptable professional standards, including supporting audit procedures, findings and results.
- Follow-up on open audit issues and validate their resolution, review evidence of closure of findings and determine that evidence of remediation is appropriate to effectively mitigate the risks raised.
- Effectively present/communicate audit observations to management, as requested by audit management.
- Participate in department-wide initiatives and perform other duties as assigned.
#LI-Hybrid
Qualifications- Minimum five years of information technology audit experience in financial services and/or public accounting firm.
- Demonstrated experience in executing all aspects of the audit lifecycle, including planning, risk assessment, scoping, detailed testing, reporting, issue follow-up and validation.
- Strong project management and time management skills, ability to effectively balance competing priorities, and demonstrated success in delivering on-time and on-budget work product.
- Bachelor's degree in Information Technology, Business, Accounting, Finance or related field is required.
- Knowledge, understanding and experience in one or more information technology risk and control areas including logical and physical security, system development lifecycle (e.g. Agile and Waterfall), change management, IT operations, business continuity management and infrastructure (network, operating systems, databases, data center, etc.).
- Knowledge and experience utilizing relevant industry frameworks and regulatory guidance (e.g. COBIT, ITIL, NIST, FFIEC, ISO 27002, etc.) and applicable banking regulations.
- Demonstrated ability to adapt quickly to changing demands and environment and rapidly develop in-depth knowledge of new audit areas.
- Excellent verbal and written communication skills and ability to professionally and effectively interact with all levels of management.
- Ability to utilize appropriate tools to enhance the audit process.
One of the following certifications is preferred:
- Certified Information System Auditor (CISA)
- Certification specific to the information technology industry such as, Certified Information Systems Security Professional (CISSP), Certified in Risk and Information Systems Control (CRISC), Certified Information Privacy Professional (CIPP), Certified in the Governance of Enterprise IT (CGEIT), Certified Information Security Manager (CISM).
Compensation
The expected annual salary for this position is between $135,000 and $165,000 at the start of employment. A salary offer is determined on an individualized basis, taking into consideration factors such as an individual’s skills and experience. In addition to base salary, our total rewards package also includes eligibility for an annual bonus, medical, pharmacy, dental, and vision plans, life and disability insurance, employee wellness program, retirement and savings plans with employer contributions, generous holiday and paid time off schedules, parental leave, and tuition reimbursement.
Additional Information
Disclaimer
The above statements are intended to describe the general nature and level of work being performed by people assigned to this classification. They are not to be construed as an exhaustive list of all responsibilities, duties, and skills required of personnel so classified. All personnel may be required to perform duties outside of their normal responsibilities from time to time, as needed.
All your information will be kept confidential according to EEO guidelines.
The Bank will make reasonable accommodations to the following employees to allow them to perform the essential functions of their position, except where doing so would result in undue hardship to the Bank:
- Those with a known mental or physical disability.
- Pregnant individuals and/or individuals with pregnancy or childbirth-related medical conditions.
- Victims of domestic violence, sex offenses or stalking.
- Employees with religious observance and practice obligations.
Any employee who believes he or she needs an accommodation for any of the above reasons should contact their supervisor or a member of Human Resources to request such an accommodation. In each case, the Bank will engage in a good faith written or oral dialogue concerning the individual’s accommodation needs; potential accommodations that may address the individual’s accommodation needs, including alternatives to a requested accommodation; and the difficulties that such potential accommodations may pose for the employer.
The Bank retains the ultimate discretion to choose the appropriate reasonable accommodation. Upon reaching a final determination at the conclusion of the cooperative dialogue, the Bank will provide the requesting individual with a written final determination identifying any accommodation granted or denied. In addition, the Bank will maintain any information regarding the employee’s request and status in the strictest confidence, except as requested by the employee, as required on a need-to-know basis or as otherwise required by law.
We are operating on a Hybrid schedule.
NO AGENCIES PLEASE.
IDB BANK, INCLUDING ITS SUBSIDIARIES AND DIVISIONS, PROVIDES EQUAL EMPLOYMENT OPPORTUNITIES TO ALL EMPLOYEES AND APPLICANTS FOR EMPLOYMENT WITHOUT REGARD TO RACE, COLOR, RELIGION, SEX, SEXUAL ORIENTATION, NATIONAL ORIGIN, AGE, DISABILITY, GENETIC STATUS, CITIZENSHIP STATUS, MARITAL STATUS, MILITARY OR VETERAN STATUS, CURRENT UNEMPLOYMENT OR ANY OTHER LEGALLY PROTECTED CATEGORY IN ACCORDANCE WITH APPLICABLE FEDERAL, STATE AND LOCAL LAW. NOTHING IN THIS SITE CONSTITUTES A PROMISE OR OFFER OF EMPLOYMENT.
IDB BANK, INCLUDING ITS SUBSIDIARIES AND DIVISIONS, PROVIDES EQUAL EMPLOYMENT OPPORTUNITIES TO ALL EMPLOYEES AND APPLICANTS FOR EMPLOYMENT WITHOUT REGARD TO RACE, COLOR, RELIGION, SEX, SEXUAL ORIENTATION, NATIONAL ORIGIN, AGE, DISABILITY, GENETIC STATUS, CITIZENSHIP STATUS, MARITAL STATUS, MILITARY OR VETERAN STATUS, CURRENT UNEMPLOYMENT OR ANY OTHER LEGALLY PROTECTED CATEGORY IN ACCORDANCE WITH APPLICABLE FEDERAL, STATE AND LOCAL LAW. NOTHING IN THIS SITE CONSTITUTES A PROMISE OR OFFER OF EMPLOYMENT.