Internal Audit, Asset Wealth Management Technology, Vice President, Dallas

What We Do
As the third line of defense, Internal Audit's mission is to independently assess the firm's internal control structure, including the firm's governance processes and controls, risk management and capital and anti-financial crime frameworks, raise awareness of control risk and monitor the implementation of management's control measures. In doing so, internal Audit:

• Communicates and reports on the effectiveness of the firm's governance, risk management and controls that mitigate current and evolving risk
• Raise awareness of control risk
• Assesses the firm's control culture and conduct risks; and
• Monitors management's implementation of control measures

Goldman Sachs Internal Audit comprises of individuals from diverse backgrounds including chartered accountants, developers, risk management professionals, cybersecurity professionals, and data scientists. We are organized into global teams comprising business and technology auditors to cover all of the firm's businesses and functions, including global banking & markets, asset & wealth management, risk management, finance, cyber-security and technology risk, and engineering.

Who We Look For
Goldman Sachs Internal Auditors demonstrate strong risk and control mindsets, possess analytical skills, exercise professional skepticism and are able to challenge and discuss effectively with management on risks and control measures. We look for individuals who enjoy learning about audit, businesses and functions, have innovative and creative mindsets to adopt analytical techniques to enhance audit processes, build relationships and are able to evolve and thrive in a fast-paced global environment.

Asset & Wealth Management Technology Audit

Asset & Wealth Management covers the firm's Wealth Management, Public and Private Asset Management businesses.

As a Technology Auditor, you will be involved in providing assurance on the integrity and quality of data used for the purposes of portfolio construction and management, deal workflows, investment research flows, reporting for internal and regulatory purposes, applications stability, system operations along with other general technology controls.

As part of the third line of defense, you will be involved in independently assessing the firm's overall control environment, and communicating the results to the firm's local and global management on the effectiveness of the firm's controls that mitigate current and emerging risks, and monitoring the management's implementation of control measures. In doing so, you are supporting the provision of independent, objective and timely assurance around the firm's internal control structure, and supporting the Audit Committee, the Board of Directors and Risk Committee in fulfilling their oversight responsibilities.

For each assigned review you will report to an experienced project manager. You will be expected to:

• Assist/lead the risk assessment, scoping and planning of reviews.
• Assist/lead the execution of the reviews. Specifically focusing on the following:
• Analyze the design of controls around the underlying system architecture in the context of information technology controls and its impact on the business.
• Analyze the business and technology processes to evaluate the design and effectiveness of the relevant technology controls by designing and executing tests to validate identified system control features, which may require data analysis, code inspection and re-performance of system processes.
• Document the results of the test steps executed within the Internal Audit workflow application as per the departmental guidelines.
• Assist in/lead the vetting of audit observations
• 
  

  Assist in/lead the tracking, monitoring and recording of remediation of risks identified in reviews.

  
  

Basic Qualifications

• BE/B Tech/MCA/MBA/MS in Information Systems or equivalent University degrees in technology
• 8+ years of experience in technology audit focusing on Financial Services Technology audit.
• Technology audit skills including an understanding of:
  
  
  
  • System architecture, with high level understanding of databases, operating systems and messaging
  • Prior experience of testing automated IT application controls
  • System Development / Programming Languages
  • System Architecture (Distributed/Messaging, Cloud, emerging technologies)
  • Operating Systems and databases
  • Data analysis skills (SQL, ACL, or similar tools)
  • Application security principles
  • System development lifecycle (SDLC)
  • Management, monitoring and operations of technology (backups, change management, system monitoring, incident/problem management)
  • Business continuity planning and disaster recovery design and implementation
  • Security within the software development lifecycle
  
  
• Ability to review code (object oriented programming languages such as Java, C#, C++)
• Experience in managing audit engagements or technology projects
• Relevant Certification or industry accreditation (CISA, CISSP, etc)
• Ability to work effectively across a large global audit team, understanding the team's role in the overall strategy of the firm
• Strong written and verbal communication skills a must; strong interpersonal skills essential.
• Requirement for frequent interaction with technology management
• Must be able to multitask while managing both timelines and workload

• Experience with AI, Data Analytics tools and techniques
• Audit experience in Cloud and other emerging technologies