Technology Audit [Multiple Positions Available]

DESCRIPTION:

Duties: Plans, executes, and leads audits in a risk focused manner, with quality deliverables, on time, within budget and in accordance with department and professional standards.

Partners with auditors in other business areas to develop infrastructure risk and control assessments.

Evaluates, tests and reports on the adequacy and effectiveness of the control environment.

Reviews and finalizes audit findings and provides a comprehensive opinion on the control environment.

Communicates audit results and issues in a clear and concise manner, both verbally and in writing.

Oversees the identification of emerging control issues and reports them to audit management and business stakeholders.

Analyzes risks and proactively identifies the root-cause of issues with a view to providing recommendations for improvement where weaknesses are identified.

Established stakeholder relationships as a trusted advisor while ensuring independence, which included establishing a culture of engagement while adding value, effective teamwork, and innovative thinking.

Implement and execute an effective program of continuous auditing and monitoring for assigned areas.

This includes monitoring of key metrics to identify control issues and adverse trends in the control environment and keeping abreast of key initiatives and pertinent industry and regulatory developments.

Identifies opportunities for improvement in key controls.

Assesses the impact of evolving industry and regulatory changes on control environments.

Support coverage of cloud environments, infrastructure base compute platforms, web hosting, mainframe, and networking.

Subject matter expert (SME) for technology resiliency, supporting technology resiliency coverage and SME work.

Implements solutions to drive efficiency with existing technical infrastructure through automation and innovative opportunities offered by new technologies, including building and utilizing data analytics.

QUALIFICATIONS:

Minimum education and experience required: Bachelor's degree in Information Management, Computer Engineering, Computer Science, Information Technology, or related field of study plus 2 years of experience in the job offered or as Technology Audit, Risk Specialist / IT Auditor, Data Governance Analyst, or related occupation.

Skills Required: This position requires experience with the following: technology auditing, technology risk and control management; technology and Cyber domains, including Vulnerability Management, Cybersecurity, Cloud, Resiliency, Technology Development, Identity and Access Management; internal control concepts; assessing the probability and impact of an internal control weakness; Windows, Linux O/S administration, configuring security, polices and patching; database including MySQL, Oracle, S3, Mongo; Storage technologies including NAS and CIFS, including securing, monitoring, and managing DBs; network architecture and network operational controls, including implementing network moni...