Senior IT Internal Auditor, Sr. Assoc.
About the position
The Senior IT Internal Auditor at FHLBank San Francisco plays a crucial role in ensuring the integrity and efficiency of the Bank's Information Technology (IT) and Information Security (IS) activities. This position involves successfully completing assigned audit engagements under the guidance of Audit Leadership, identifying potential issues and process efficiencies, and developing audit recommendations aimed at mitigating risks while achieving business and technology objectives. The auditor will draft clear and concise audit reports that detail the impact and root causes of identified issues, perform risk assessments of IT/IS activities, and develop risk-based work plans to meet audit and control objectives. Additionally, the auditor will assist in the completion and development of the annual audit plan and undertake additional projects as necessary. Maintaining internal audit tools and methodologies in accordance with Bank policies is also a key responsibility.
Responsibilities
Assist in planning, scheduling and preliminary analysis for assigned audit projects.
,
Coordinate audit activities for assigned audit projects, including notification of all affected parties of audit timing, scope, objectives, approach and deliverables.
,
Identify, document, and map IT/IS processes and internal controls of applicable infrastructure and operational areas per the scope of the audit project.
,
Perform risk assessments of IT/IS infrastructure and operational processes and controls for assigned areas.
,
Develop risk-based audit programs to achieve IT/IS audit objectives for assigned audit projects, and incorporate Data Analytics, as appropriate.
,
Perform audits related to IT/IS ensuring compliance with IA and industry (including IIA) standards.
,
Support the identification of opportunities for the usage of Data Analytics in the audit process through data collection, and analysis, and during audit execution.
,
Support integrated audits that cover financial, operational, and business areas of focus with technical expertise related to IT/IS, and incorporate the usage of Data Analytics, as appropriate.
,
Assist assessments of new products, systems, and technologies and provide technical expertise related to IT/IS.
,
Complete audit testing, inquiry, and other analysis required to meet objectives of assigned audit projects.
,
Complete working papers evidencing performance of all audit work.
,
Communicate progress and results of audit throughout the audit engagement to auditee and management.
,
Develop value added recommendations to deal with issues identified during assigned audits and draft audit reports to formally communicate the results of the audit and related recommendations.
,
Perform reviews of implemented audit recommendations.
,
Maintain internal department Manual, Procedures/Standards, and tools, including Governance, Risk and Compliance (GRC), in accordance with Bank policies.
Requirements
Bachelor's degree in Information Systems, Computer Sciences, or related field, or equivalent experience.
,
Certified Information Systems Auditor (CISA) and/or Certified Information Systems Security Professional (CISP) strongly preferred.
,
Minimum three years internal or external audit experience is required, public accounting firm or financial services industry experience preferred.
,
Strong understanding of technology processes (e.g., change management, access management, computer operations) and application controls within a regulated environment.
,
Sound understanding of audit process/methodology and risk management/advisory ability.
,
Experienced in using a risk-based audit approach in evaluation of recommendations for management processes.
,
Ability to adapt to a changing environment, meet deadlines and handle multiple projects.
,
Excellent communication, interpersonal, time management and issue resolution skills.
,
Able to operate PC-based software and/or automated database systems required.
Nice-to-haves
Experience with Data Analytics in audit processes.
,
Familiarity with Governance, Risk and Compliance (GRC) tools.
Benefits
Health Insurance
,
401K Plan with company matching
,
Work From Home options
,
20+ days vacation
,
Education subsidy
Apply Job!