Senior IT Auditor


  • Job ID:

    2485
  • Pay rate range:

    $60 - $95
  • City:

    New York
  • State:

    New York
  • Duration:

    09/20/2020 - 01/20/2021
  • Job Type:

    Contract
  • Job Description

    Pay: $60-$70(W2)/$75-$95(1099/C2C)

    Duration: 3+months (may extend)

    Location: Remote (travel may be required after COVID restrictions are lifted)

    Position: Lead IT Auditor/Auditor in Charge (AIC)

    A Large Public Accounting firm is seeking a Sr. IT Auditor to join their client engagement for a 3+month project with likely extension to work remotely. Engagement is to start as soon as possible.

    Preferred Knowledge, Skills, and Abilities 

    • Experience evaluating improvements to the overall design, effectiveness, and sustainability of enterprise-wide IT/IS programs and foundational governance.
    • Reviewing the validation of data issues identified through Information Protection, Technology and Data Test and Verification to assess the appropriateness, completeness, effectiveness, and sustainability of corrective actions taken to address large bank (total assets greater than $10 billion) IT/IS governance and data management risk issues. 
    • Strong understanding and experience auditing to Federal Financial Institutions Examination Council's (FFIEC) handbooks and standards of Interagency Guidelines Establishing Information Security Standards
    • Experience in sensitive data management.
    • Independent verification of remediation and / or mitigating controls, and sustainability, for data issues as defined by Issue Management and Information Technology policy requirements. 
    • Reviewing the validation of milestones associated with identified issues. 
    • Oversee the planning and validation reviews within required timeframes and in accordance with established processes and procedures including the Independent Monitoring, Testing, and Validation Policy and Procedures. 
    • Communicate the validation process, status, and results to business partners. 
    • Provide credible challenge and recommendations resulting from validation work to risk and business partners. 
    • Facilitate an efficient and valued validation review process. 
    • Validate and communicate potential issues and results of testing to the appropriate parties, including senior management. 
    • Draft the related audit issues and audit reports for issuance to respective client leadership conducting follow-up activities. 
    • Evaluate the adequacy of process design, identify process risk points, and evaluate adequacy of corresponding internal controls  
    • Evaluate the design and operating effectiveness of internal controls and adherence to established policies, procedures, and/or regulatory guidance 
    • Perform audits in accordance with IIA standards and company methodology 
    • Propose practical and value-added recommendations to address control weaknesses, gaps, and/or process inefficiencies, and document clear evidential support for findings 
    • Participate in closing meetings at the end of fieldwork and develop articulate and concise explanations for identified issues 

    Required Qualifications (Auditor in Charge) 

    • 10+ years of experience in large financial services IT/Security internal audit department, or equivalent IT/Security audit or consulting experience to include top tier firm  
    • CISA (Certified Information Systems Auditor) or CISSP (Certified Information Systems Security Professional) 
    • Demonstrated experience working in a highly regulated environment. 
    • Subject matter expert knowledge in Audit theory with experience in one or more of the following areas: Information Technology/Information Security, risk management, bank regulatory, compliance risk management. 

    Desired/Other Qualifications 

    • Preferred certifications: CIA, CFSA, CRMA 
    • Commissioned federal compliance bank examiner 
    • Advanced knowledge of / or experience auditing in the following areas: IT General Controls (Logical Access Management, System Development Life Cycle Management, Change Management, Batch Processing Management, and Storage Management), Digital Auditing (Digital Channels, Digital Design, Digital Technologies, etc.), IT and IS issue

    reporting, sensitive data management, and Disaster Recovery / Business Continuation Management. 

    • In depth knowledge of industry frameworks/standards utilized for IT internal controls (COBIT, NIST CSF, ISO, PCI-DSS etc.) 
    • Preferred designations include CISA (Certified Information Systems Auditor), CISSP (Certified Information Security Systems Professional), or other relevant business designations 
    • Prior audit experience managing programs around MRA/MRIA/CO 
    • Deep knowledge of risk assessment, risk and control self-assessments process enhancements, audit methodology, and audit execution 
    • Strong project management leadership experience in risk or audit functions 
    • Experience conducting and leading validation reviews of issues and corrective actions 
    • In-depth understanding of risk management policies and programs (preferably for large financial institutions) 
    • Experience in Audit, Compliance, Risk and Testing 
    • Critical Thinking and Analytical skills 
    • Adheres to the Institute of Internal Auditors' International Standards for the Professional Practice of Internal Auditing (Standards) and Code of Ethics.  

     

    #pcaf

    #pcit

Add Reference

CONTRACTORS

Find and apply to jobs on the go

Take our free app with you anywhere. Enter your phone number and we’ll send you the download link.

  • +1

Client Registration Request