Vacancy expired!
Position Description:Asses and controls corporate-wide systems, infrastructure, environments, and system development efforts in support of the business. Leads operational and integrated audits. Develops hypotheses around risk and controls, provides input to the integrated audit plan, and manages a high-performing project team.Primary Responsibilities:
Collaborates with management within a variety of business or functions to identify risks and resolve issues across the global organization.
Escalates identified issues and proposes viable solutions.
Drafts audit report and reviews audit results and corrective actions with senior executives.
Supports various department initiatives.
Evaluates the effectiveness of controls, risk management, compliance, and governance processes.
Partners with business leader to improvement control environments.
Provides technical oversight for risk and data analysis audits for compliance with regulations.
Identities and assesses complex risks (both business and technology) in order to provide advice to management.
Assesses controls over application processes, physical and logical security, systems acquisition, system and network infrastructure, system architecture, and production support.
Provides audit advisory services on new and changing products and systems.
Assesses adequacy and effectiveness of controls, risk management, and compliance.
Identifies and assesses application-related risks (both business and technological) and provides advice to management regarding mitigation of risks.
Develops data analysis and automated tools to provide management with proper context of potential exposure due to control weaknesses.
Mentors audit staff to develop a broader skill base and level of understanding of IT risks.
#PE1M2Education and Experience:Bachelor’s degree (or foreign education equivalent) in Computer Science, Engineering, Information Technology, Information Systems, Mathematics, Management Information Systems, Physics, or a closely related field and five (5) years of experience in the job offered or five (5) years of experience performing IT risk assessments (SOX reporting) in an audit or cybersecurity environment.Or, alternatively, a Master’s degree (or foreign education equivalent) in Computer Science, Engineering, Information Technology, Information Systems, Mathematics, Management Information Systems, Physics, or a closely related field and three (3) years of experience in the job offered or three (3) years of experience performing IT risk assessments (SOX reporting) in an audit or cybersecurity environment.Skills and Knowledge:Candidate must also possess:· Demonstrated Expertise (“DE”) assessing and auditing IT control programs for large-scale investment organizations within mainframe, network, and desktop environments.· DE performing risk and data analysis audits for compliance with FINRA, SEC, and MSRB regulations; and drafting audit result and corrective action reports for senior executives.· DE performing IT risk analysis and assessments of financial Web applications using technologies Amazon Web Services (AWS), Blue Prism (robotic process automation tool), Mainframe, and Oracle Databases and Kubernetes (technology containerization) to identify technology control weaknesses, systems accuracies, and security weaknesses.· DE executing risk assessment audits of large-scale, IT financial investment, cybersecurity, and cloud computing systems using technologies Amazon Web Services (AWS), tool Blue Prism (robotic process automation tool), Mainframe, Oracle Databases, Docker, and Kubernetes (technology containerization); and developing risk assessment audit reports and presentations, using Microsoft PowerPoint, Visio, and Word with recommended mediation and corrective actions for senior management.Job: TechnologyTitle: IT Audit ManagerLocation: NC-DurhamRequisition ID: 1910403