IT Audit Manager - Cyber

Northern Trustposted about 2 months ago
$83,100 - $141,300/Yr
Full-time - Mid Level
Hybrid - Chicago, IL
Securities, Commodity Contracts, and Other Financial Investments and Related Activities

Add to tracker

Apply

About the position

The IT Audit Manager - Cyber is responsible for the execution of audit engagements, which includes planning and developing the project scope, maintaining the budget and timeframes of the project to meet audit requirements, and ensuring department Standards are properly met. The role is a direct report to an Associate Director. The IT Audit Manager, Cyber provides input to improve operational efficiency and/or to enhance the design or operating effectiveness of the internal control environment. The role provides technical expertise and performs supervisor related work including training new employees and those with lesser experience, reviewing the work of others, and providing regular feedback to coach staff. This role will interact and build relationships with management across Northern Trust's Technology functions. The role is responsible for execution of validation testing as well as cyber audit engagements. The successful candidate will also be responsible for audits of information security, identity and access management; data protection; security incident response; authentication services; insider threats; vulnerability and threat management; and network perimeter defenses, as well as contributing to general and integrated IT Audit engagements.

Responsibilities

  • Functions in various roles on audit engagements, including leading audits, staffing audits, and providing consulting or oversight functions based on the needs of the team.
  • Provides technical expertise to the IT Audit Team and uses sound audit practices.
  • Maintains familiarization and technical expertise with the assigned business unit(s) including organizational structure, personnel, activities and products, new product development, financial performance, and risk and problem areas.
  • Manages and performs special projects as assigned.
  • Participates in meetings with business unit to discuss audit results.
  • Communicates with partners at all levels, developing and presenting recommendations on operations and controls for the business unit.
  • During audit engagements, assigns work to auditors, sets priorities and monitors activity.
  • Utilizes understanding of various Corporate units to ensure operations, services, and systems have proper controls in place (i.e., design of the control environment).
  • Reviews audit work including workpaper documentation, findings, recommendations, and the final report to ensure appropriate adherence to the Corporation's/Department's Policies and Standards and ensuring work is performed within established timeframes.
  • Evaluates corporate management, business processes, business controls, and operating practices during audits and consulting/monitoring engagements.
  • Applies analytical skills to review information and determine potential control weaknesses.

Requirements

  • Knowledge and experience leading risk-based cyber and information security audits and/or general technology audits.
  • Solid understanding of ITGC and related processes (e.g., Configuration Management, Vendor Management).
  • Understanding of Information Technology Service Management (ITSM) controls (e.g., Incident Management, Problem Management).
  • Skills as needed to perform testing of application controls (e.g., BC/DR, Application Security Testing, Interface Controls).
  • Skills as needed to perform testing of information security and cybersecurity controls (e.g., Event Monitoring, Data Security).
  • Knowledge of risks related to newer technologies (e.g., Infrastructure as Code, Cloud Access Management, Kubernetes, Containers, CI/CD).
  • Knowledge of IT and cybersecurity regulations, standards, and frameworks (e.g., NIST CSF, FFIEC, GDPR, ITIL).
  • Knowledge of cloud environments and related technologies (e.g., Microsoft Azure, Amazon Web Services, private and hybrid cloud architectures).
  • Professional certifications (e.g., CISA, CISSP, CCSP).
  • Strong analytical, leadership, and organizational skills are needed.
  • Strong report writing and work paper documentation skills.

Nice-to-haves

  • Adept auditing and/or systems experience in a financial institution, or similar public accounting experience in the financial services industry.

Benefits

  • Comprehensive benefits package including retirement benefits (401k and pension)
  • Health and welfare benefits (medical, dental, vision, spending accounts and disability)
  • Paid time off
  • Parental and caregiver leave
  • Life & accident insurance
  • Other voluntary and well-being benefits
  • Discretionary bonus program that may include an equity component

Add to tracker

Apply

Hard Skills
Application Security
1
CI/CD
1
Kubernetes
1
Microsoft Azure
1
Web Services
1
5XfA0z ui54DPaxtlAT
0
9eSvWTnozaC3 d6GZEXrj
0
AdM1v56lg zagFA0oI H1wFI5mk2
0
BVW5kI1eN8oO 4lPDFmCtH 7aCOx1S
0
E0QGPp4L JtpY9cK5zak
0
FCDsN7r QvTCIZ5kD6m
0
IBOSxVaesJu6 69hFjZOpb
0
IF8fizpxZvA1 pSuyCeQlY CpFf8zS
0
IbMtq9TsDK QGrVMCZTg5jd
0
Iefxc7 3cjPZzVrfRO
0
Jg6AN 8PsZRF5Srzg
0
L40eG M0JdAYBOZ
0
MEiJSRmdtj mk3B0eYMt
0
N7FUODG4wi6nMb9 bg1qn8kKrS
0
OqMvPS RkytXPDadpl
0
QZ1IEF4sx pLcZSzRyHWuDF7 cAmdGJhLTNX
0
STAgfrJ 9iAtgxJ6P3
0
WpnRfP9S N9CLZWBn
0
Zta0fAv9U k2i8K3Iu6
0
dZcUkb yRlfIMaDBCnN
0
diu0DrGq2Q4x WGBKvb4zMhe
0
dsWN bciFfHA4 wRkjG16tyOPB
0
hNFPrZ7wS FUis0Bj7c
0
hP5rZ6 MekxztuvESgH
0
mHaJv7BGq 1MP73kL9el2
0
oGArzYlNuUfC utq3Ef2K9Nb 7VyAestZ0Eq
0
pvdu9LE 7IpnvO6xauK
0
xu86oL0BX1sQ5Pb miZ KYdwv
0
z0l4TGo HUfxyStL
0
Soft Skills
cOjkVdzEi0C ozeSjdu
0
dlJf0MsDkmwNKxT t9BGe16
0
fAcXDCIVUnxRK hBQdG7qkL
0
Unlock 32 more keywords by signing up for Teal+
Sign Up
Build your resume with AI

A Smarter and Faster Way to Build Your Resume

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service