Manager of Audit II, IT at City National Bank Los Angeles, CA 90189
WHAT IS THE OPPORTUNITY?Responsible for performing and/or leading complex IT audits including but not limited to network, databases, operating systems, information/cyber security, applications, identity and access management, disaster recovery, etc.
Assesses risks, develops detailed audit programs, executes audit program steps, analyzes results of testing performed, and effectively communicates results to senior management.
Position will also assist with the development and implementation of an Information technology data analytics strategy that delivers key insights to management and supporting functions.
Leveraging deep expertise in business strategy, analysis, data science, and visualization techniques to support the audit function and the organization with actionable insights to drive ongoing success.
Areas of focus include supporting the continuous improvement of audit methodologies, audit approach and related practices with particular emphasis towards collaboration with key partners, leveraging the use of analytics, business intelligence, data mining and other enabling approaches, technologies and tools.
Risk Management DivisionThis is a great opportunity to grow your career with a stable and expanding organization as a member of City Nationals Risk Management team.
The focus is on ensuring business activities remain safe, compliant and well-positioned for future opportunity and sustainable growth.
WHAT WILL YOU DO?Plans, leads and executes moderate to high complexity risk-based audits, targeted reviews, etc.
in accordance with CNB audit methodologyCollaborates with Non-IT (e.
g.
Operational, Financial, Wealth Management, etc.
) Audit counterparts during all phases of an integrated audit to ensure sufficient IT audit coverage.
This includes assessing business processes to identity the key application(s) utilized in processes and the top risks and controls that should be reviewed in the audit.
Leads interviews and walkthroughs of IT and business process with the objective to identity top risk, key controls and define the audit scope and audit work programsDevelops and executes test steps and sampling strategy that adequately and efficiently substantiate that identified controls are designed and operating effectivelyIncorporates the use of data analytics to improve audit efficiency and broaden the audited populationEnsures all audit work (e.
g.
, work papers, reports, etc.
) conforms to the CNBs audit methodology, including those performed by staffDrafts and communicates audit findings/audit report to executive and senior management to address identified risks, exposures and root causesObtains and assesses responses to audit findings to ensure management action plans and target due dates are adequate in addressing the risk(s) and root cause(s) in a timely matterWhere applicable, supervises staff and provides team members with appropriate guidance during the course of auditsWhere applicable, serves as the first line of review for staff work and provided corrective feedback were necessaryActs as a role model/mentor to lower level AuditorsPerforms on-the-job training of staff auditors, and prepares and conducts formal/informal training for less experienced staff members.
Where applicable, provides input on audit staff performanceOversees, trains and manages co-sourced audits or consultants to ensure work product meets CNB audit methodology expectations, as neededKeeps respective Director or Auditor-in-Charge apprised of project status, observations and audit findings.
Demonstrated experience in working in a matrixed organization with proven ability to multitask and prioritize activities.
Perform on-going and pro-active evaluation of significant projects and large-scale business initiatives for the purposes of identifying possible unmitigated risks and providing advisory services.
Project types include, but are not limited to, integration of newly acquired businesses, implementation of new systems or technology (SDLC), enhancements of significant systems, etc.
Assists in quarterly Continuous Monitoring activities, which include but are not limited to, performing risk assessments of assigned IT functions/depts.
, develop continuous assurance data analytics test strategiesTakes responsibility to develop own personal and professional leadership skills and capabilitiesParticipates in social, charitable or inclusive committees within Internal Audit or RBCBuild trusting relationships with Internal Audit peers and business partnersWHAT DO YOU NEED TO SUCCEEDMust-Have Bachelors Degree in Computer Information Systems, Computer Engineering, Computer Science, Management Information systems, or related field required.
Minimum 7 years of audit experience or related experienceCISSP - Certified Information Systems Security Professional OrCIA-Certified Internal Auditor OrCISM-Certified Information Security Manager OrCISA- Certified Information Systems AuditorSkills and KnowledgeMust possess strong managerial, organizational, and verbal and written communication skills.
Ideal candidate will have relevant experience in an IT department along with at least 4 years in banking or financial services, or equivalent experience in a consulting capacityExperience in use of data analytics, visualization and reporting -- e.
g.
Tableau.
Capable of working in an agile and dynamic team-based environment, can tolerate ambiguity, able to function independently, and demonstrates critical problem-solving abilities.
Knowledgeable in and prior audit experience in auditing Cyber/Information Security controls (NIST, FFIEC CAT, etc.
), Data Protection controls (DLP, Encryption technology, etc.
) IT related Privacy Laws and Regulations (e.
g.
, GLBA), SQL/Oracle Database, Active Directory, Cloud Computing (Azure), BCP/DR, Service Management, Microsoft Active Directory, Digital Technology controls, SSDLC, Malware, Asset ManagementKnowledgeable in COBIT.
Estimated Salary: $20 to $28 per hour based on qualifications.
Assesses risks, develops detailed audit programs, executes audit program steps, analyzes results of testing performed, and effectively communicates results to senior management.
Position will also assist with the development and implementation of an Information technology data analytics strategy that delivers key insights to management and supporting functions.
Leveraging deep expertise in business strategy, analysis, data science, and visualization techniques to support the audit function and the organization with actionable insights to drive ongoing success.
Areas of focus include supporting the continuous improvement of audit methodologies, audit approach and related practices with particular emphasis towards collaboration with key partners, leveraging the use of analytics, business intelligence, data mining and other enabling approaches, technologies and tools.
Risk Management DivisionThis is a great opportunity to grow your career with a stable and expanding organization as a member of City Nationals Risk Management team.
The focus is on ensuring business activities remain safe, compliant and well-positioned for future opportunity and sustainable growth.
WHAT WILL YOU DO?Plans, leads and executes moderate to high complexity risk-based audits, targeted reviews, etc.
in accordance with CNB audit methodologyCollaborates with Non-IT (e.
g.
Operational, Financial, Wealth Management, etc.
) Audit counterparts during all phases of an integrated audit to ensure sufficient IT audit coverage.
This includes assessing business processes to identity the key application(s) utilized in processes and the top risks and controls that should be reviewed in the audit.
Leads interviews and walkthroughs of IT and business process with the objective to identity top risk, key controls and define the audit scope and audit work programsDevelops and executes test steps and sampling strategy that adequately and efficiently substantiate that identified controls are designed and operating effectivelyIncorporates the use of data analytics to improve audit efficiency and broaden the audited populationEnsures all audit work (e.
g.
, work papers, reports, etc.
) conforms to the CNBs audit methodology, including those performed by staffDrafts and communicates audit findings/audit report to executive and senior management to address identified risks, exposures and root causesObtains and assesses responses to audit findings to ensure management action plans and target due dates are adequate in addressing the risk(s) and root cause(s) in a timely matterWhere applicable, supervises staff and provides team members with appropriate guidance during the course of auditsWhere applicable, serves as the first line of review for staff work and provided corrective feedback were necessaryActs as a role model/mentor to lower level AuditorsPerforms on-the-job training of staff auditors, and prepares and conducts formal/informal training for less experienced staff members.
Where applicable, provides input on audit staff performanceOversees, trains and manages co-sourced audits or consultants to ensure work product meets CNB audit methodology expectations, as neededKeeps respective Director or Auditor-in-Charge apprised of project status, observations and audit findings.
Demonstrated experience in working in a matrixed organization with proven ability to multitask and prioritize activities.
Perform on-going and pro-active evaluation of significant projects and large-scale business initiatives for the purposes of identifying possible unmitigated risks and providing advisory services.
Project types include, but are not limited to, integration of newly acquired businesses, implementation of new systems or technology (SDLC), enhancements of significant systems, etc.
Assists in quarterly Continuous Monitoring activities, which include but are not limited to, performing risk assessments of assigned IT functions/depts.
, develop continuous assurance data analytics test strategiesTakes responsibility to develop own personal and professional leadership skills and capabilitiesParticipates in social, charitable or inclusive committees within Internal Audit or RBCBuild trusting relationships with Internal Audit peers and business partnersWHAT DO YOU NEED TO SUCCEEDMust-Have Bachelors Degree in Computer Information Systems, Computer Engineering, Computer Science, Management Information systems, or related field required.
Minimum 7 years of audit experience or related experienceCISSP - Certified Information Systems Security Professional OrCIA-Certified Internal Auditor OrCISM-Certified Information Security Manager OrCISA- Certified Information Systems AuditorSkills and KnowledgeMust possess strong managerial, organizational, and verbal and written communication skills.
Ideal candidate will have relevant experience in an IT department along with at least 4 years in banking or financial services, or equivalent experience in a consulting capacityExperience in use of data analytics, visualization and reporting -- e.
g.
Tableau.
Capable of working in an agile and dynamic team-based environment, can tolerate ambiguity, able to function independently, and demonstrates critical problem-solving abilities.
Knowledgeable in and prior audit experience in auditing Cyber/Information Security controls (NIST, FFIEC CAT, etc.
), Data Protection controls (DLP, Encryption technology, etc.
) IT related Privacy Laws and Regulations (e.
g.
, GLBA), SQL/Oracle Database, Active Directory, Cloud Computing (Azure), BCP/DR, Service Management, Microsoft Active Directory, Digital Technology controls, SSDLC, Malware, Asset ManagementKnowledgeable in COBIT.
Estimated Salary: $20 to $28 per hour based on qualifications.
|
|
 | |
