AVP, IT Internal Audit Supervisor

GENERAL SUMMARY

Under the supervision of the SVP, Chief Internal Auditor and the VP, IT Audit Manager, the AVP, IT Internal Audit Supervisor leads complex Information Technology (IT), Information Security (IS) and integrated audits from inception to completion. The AVP, IT Internal Audit Supervisor is responsible for leading and executing audits (i.e., plans, coordinates, and directs the activities of assisting auditors) in accordance with the International Standards for the Professional Practices of Internal Auditing.

DIRECT REPORTS

The incumbent has no direct reports but supervises/leads a team of auditors based on the engagement.

ESSENTIAL FUNCTIONS

• Performs IT/IS audits to determine the nature of the operations and the existence and adequacy of the internal controls in place to achieve established objectives and minimize risk exposure to the Bank.
• Evaluates the adequacy and effectiveness of internal control methods, policies, and procedures.
• Determines whether duties are performed in accordance with company policies, operating procedures, other management instructions, and regulatory requirements.
• Validates audit issues by evaluating effectiveness and sustainability of remediating activities.
• Conducts interviews with appropriate Company team members to supplement assigned audit tests.
• Prepares professional work papers including supporting documentation for each audit issue identified.
• Acts as an Auditor-in-Charge and performs the following duties:
• Plans the audit, including developing the risk assessment, high-level process flows, planning memo, brainstorm decks, risk and control matrix, and audit program.
• Assigns segments of the program to assisting auditors and is responsible for performing testing procedures for controls
• Manages day-to-day engagement-related efforts and assignments of audit team members.
• Leads project status meetings internally and with the auditee to ensure that the project is managed within the set budgets and timelines.
• Oversees staff assignments to ensure completion within established time budgets and ensures timekeeping systems are timely updated.
• Immediately informs the Chief Auditor and/or the Audit Manager of any condition that may adversely impact the audit.
• Performs detailed review of work by team members for accuracy, completeness, and adherence to Internal Audit standards.
• Provides day-to-day coaching guidance and on the job training to team members to ensure development, quality, and timely audit engagement deliverables.
• Prepares Exit Grid with findings and recommendations for the review and approval of the Audit Manager and Chief Internal Auditor.
• Presents audit findings to management in Exit meeting.
• Prepares draft audit reports for the review and approval of the Audit Manager and Chief Internal Auditor.
• Ensures the audit system is properly and timely updated with the work completed for the audit.
• Performs follow up examinations/remediation testing activities to determine the existence and adequacy of corrective actions taken by management in response to audit recommendations.
• Develops good working relationships with auditees and collaborates with auditees during the audit process.
• During the performance of their duties, the AVP, IT Internal Audit Supervisor is expected to:
• Recommend revisions to audit programs resulting from changes in operating activities.
• Recommend the scope of audit testing and the resources needed, including the use of computer assisted auditing techniques (CAAT).
• Performs fraud investigations as assigned.
• Provides on-the-job training to other internal audit team members as needed.
• Maintains and enhances technical and professional competence through continuing education.

QUALIFICATIONS

• Bachelor's degree in Accounting, Finance, Information Technology or a related field is required. Master's in Management Information Systems or related discipline preferred.
• Minimum 5 years of technical IT/IS audit-related work experience leading audits in a public accounting or private industry internal audit function, including at least 2 years in a Bank or Financial Services industry and at least 3 years supervising audit teams is required.
• Experience leading audits in the following areas is highly desirable:
• Gramm-Leach-Bliley Act (GLBA) section 501 (b)
• Data Governance
• IP networks infrastructure (network topology, switches, routers, firewalls, intrusion detection / prevention)
• Windows active directory (policies, structure, elements)
• Databases (SQL, Oracle, DB2, monitoring tools)
• Mobile technologies (data leakage prevention, BYOD security)
• Cloud Computing
• Standards / Frameworks (CoBIT 5, ITIL, FFIEC IT Examination Handbook, ISO 15504, ISO 20000, ISO 27000, ISO 31000, ISO 38500, NIST series 800 guidance)
• Knowledge and understanding of Information Technology operating systems including mainframe, MS Windows, UNIX, and Linux.
• Ability to work independently and with others.
• Knowledgeable about the financial industry and related markets, related regulatory bodies, and current industry events and trends.
• Deep understanding of risk assessment, audit methodology, and IT/IS audit execution.
• Strong time management and organizational skills including the ability to manage multiple projects and competing priorities.
• Ability to exercise sound judgment in the execution of assignments and communication with others.
• Excellent verbal and written communication skills; interpersonal and presentation skills - ability to work closely and collaboratively with people at all levels in the department and within the organization.
• Strong analytical thinker and detail oriented with the ability to proactively identify issues and assist in resolution.
• Excellent computer skills, Proficient in Microsoft Office Products (i.e. Excel, PowerPoint, Word, etc.).
• Coaching skills and ability to delegate work to others.

CERTIFICATIONS

• CISA, CISSP or CISM required.
• Additional qualifications, such as CFE, CIA and CAMS also preferred

OTHER DETAILS

$110K - $140K / year
Pay determined based on job-related knowledge, skills, experience, and location.