Technical IT Audit Lead
Description:
The Technical IT Audit Lead performs specialized auditing tasks related to bank technology operations. This includes thorough and efficient planning, testing, reporting, and follow-up on audit results. The role is primarily engaged with audits of technical and emerging technology disciplines, such as cloud computing, cybersecurity, network security, application security, digital implementation, data governance and security. This position is guided by general instruction and a limited amount of supervision, and the candidate demonstrates a high level of autonomy and ability to exercise independent judgement.
Essential Functions
Work collaboratively with audit teams to lead and execute IT-related audits.
Lead planning activities to identify significant risks, determine audit scope, and develop appropriate risk-based audit procedures.
Be familiar with Northwest documentation/processes/procedures, and research/interpret relevance of specific regulations/current literature to audit work.
Consult key personnel to assess business processes and the strength of their control environments.
Collect and analyze necessary data for audits, evaluate information, and draw logical conclusions.
Lead activities to prepare clear, detailed audit documentation evidencing the results of actual testing procedures in accordance with departmental standards and the Institute of Internal Auditors (IIA).
Identify meaningful value-added recommendations for management to improve the adequacy, effectiveness, and efficiency of controls and related processes.
Summarize and present audit results/findings to business unit management and audit management.
Lead meetings involving various levels of management to effectively communicate audit status, align on significant audit issues, and recommend corrective actions.
Prepare audit reports, including clearly written, concise audit observations that effectively communicate identified issues and their related corrective actions to stakeholders.
Evaluate the quality of the corrective action taken to improve deficient conditions.
Meet departmental continuing education requirements.
Ensure compliance with Northwest’s policies and procedures, and Federal/State regulations
Navigate Microsoft Office Software, computer applications, and software specific to the department in order to maximize technology tools and gain efficiency
Work as part of a team
Qualifications
Bachelor's Degree Computer Science, Information Security, Information Systems, or IT
CISA, CISSP, CISM Or Other Related Certification preferred
5 - 6 years IT Audit, Information Security, Technology Governance-Risk-Compliance-related experience required
6 - 8 years Financial Services/Banking-related experience preferred
Candidate must possess extensive knowledge of and be fluent in the review of, but not limited to regulatory exam reports, compliance reports, third party risk associated with various business units
Broad knowledge of financial services technology standards and frameworks (e.g., FFIEC IT Handbooks, NIST CSF, CSA Cloud Controls Matrix, PCI DSS) with the ability to interpret regulatory requirements and determine how to effectively assess business processes for compliance with applicable regulations
Solid knowledge of key technologies (e.g., Active Directory, Linux, iSeries Midrange, Azure, ServiceNow, Jira etc.).
The pay range for this position is generally $110,000-$120,000 per year. Actual pay is based on various factors including but not limited to the successful candidate’s experience, skills, and knowledge. Additional bonus earning opportunities and benefits are also available.
#LI-MM1
Northwest is an equal opportunity employer. We are committed to creating an inclusive environment for all employees.
R-100587