Key skills
CloudCyber SecuritySDLCAIAnalyticsLeadershipRisk ManagementCommunication
About this role
Role Overview
- Perform and manage complex audits of IT systems and processes across the Bank and subsidiaries
- Develop and maintain the IT Audit Risk Assessment, incorporating evolving risks such as cybersecurity, cloud, and emerging technologies
- Conduct audits of IT General Controls (ITGC), Application Controls, Cybersecurity frameworks and regulatory guidelines, Business Continuity and Disaster Recovery, Digital banking platforms (Internet, Mobile Banking), Remote Deposit Capture (RDC), Vendor Management processes, and System Development Life Cycle (SDLC)
- Evaluate the Bank’s cybersecurity posture against frameworks (FFIEC, NIST)
- Assess controls related to Identity and access management, Incident response and cyber resilience, and System Implementations
- Provide oversight of emerging risks, including Use of AI and automation tools, Data governance, integrity, and protection, and Technology-driven decision-making processes
- Review SOC 1 / SOC 2 reports (SSAE 16)
- Assess vendor due diligence, monitoring, and risk management processes
- Serve as primary IT Audit liaison with IT leadership (CIO, CTO, CISO, and senior technology managers), External auditors, and Regulatory agencies (OCC, FRB, FDIC)
Requirements
- Bachelor’s Degree in Computer Science, Information Systems, Business Administration, Finance, or related field (MBA preferred)
- 12–15 years of Internal Audit (preferably Banking), Information Technology, or Public Accounting experience
- Professional certification is strongly preferred (CISA, CISSP, CIA, CPA, CFE, or equivalent)
- Extensive management experience with demonstrated ability to communicate effectively across all organizational levels
- Strong knowledge of IT audit methodologies and best practices, COSO and COBIT frameworks, SOX Sections 302 and 404 requirements, and FFIEC guidance and federal banking regulations
- Working knowledge of cybersecurity frameworks and information security standards, Business Continuity, Disaster Recovery, and Incident Response, digital banking technologies (mobile, online, RDC), and vendor management practices
- Experience with audit analytics tools (ACL, IDEA or similar)
- Strong proficiency in Microsoft Office (Excel, PowerPoint, Visio)
- Excellent communication, presentation, problem-solving, and analytical skills
- Valid driver’s license; ability to travel to company locations as needed.
Tech Stack
- Cloud
- Cyber Security
- SDLC
Benefits
- medical, dental, and vision coverage
- 401(k) plan
- life, accident, and disability insurance
- flexible spending accounts (FSAs)
- health savings accounts (HSAs)
- wellness programs
- paid parental leave
- military leave
- vacation and other paid time off
- sick leave in accordance with applicable state laws
- paid holidays