Examine and evaluate internal controls in key technology risk areas to ensure compliance with internal policies and applicable rules, laws, and regulations. Execute audit strategies for technology areas by developing audit programs and performing audit fieldwork, including system documentation, evaluations, interviews, and technical analysis for applications. Identify control deficiencies and propose appropriate corrective measures designed to strengthen internal controls, operational and technical policies and procedures, and other weaknesses identified during audits. Lead the preparation of clear and concise audit work-papers and IT audit reports summarizing scope, methodology, and significant conclusions of audit procedures performed within prescribed time frames. Conduct audit planning and closing meetings with Internal Audit Management, focusing on IT and financial service applications, and communicate results of the audits to both audit and client management. Identify potential IT issues and their risk levels, provide remedial recommendations, and develop action plans to mitigate risk. Requirements:Master’s degree in Computer Science, Information Systems, or closely related field, plus three years of experience in the position offered or as IT Audit Manager or IT Audit Senior Manager.One year of the required experience must have included participating in and project managing technology audits including risk assessments, audit planning, audit testing, control evaluation, report drafting, and follow up and verification of issue closure; knowledge of SDLC concepts, financial services, financial reporting, change management, incident management, identity and access management; applying professional standards including IIA, ISACA, and SSAE 16; knowledge of COBIT and controls around third-party governance and oversight; reviewing ITGC and controls around information security to perform IT risk identification, IT risk assessment, risk response mitigation, and risk and control monitoring reporting; and working with MS Excel, MS PowerPoint, and cloud computing in a complex distributed computing environment. This role entails hybrid work, with time split between working in our New York, NY office and flexibility to telecommute from another U.S. location.
