City Nationalposted 6 days ago
$101,231 - $172,355/Yr
Jersey City, NJ
Credit Intermediation and Related Activities
About the position
The Audit Manager II (AM II) of Cybersecurity will support the Director IA, CNB Cybersecurity and Risk Management, and Senior Director IA, US Technology in providing independent, objective assurance over the design and operation of CNB's IT risk management practices, governance processes and the system of internal controls.
Responsibilities
- Execute on the annual Audit Plan for CNB IT Cybersecurity and IT Risk Management audit universe, ensuring that audits conform to local and global regulatory and internal audit requirements.
- Perform vulnerability assessment and understanding penetration testing methodologies and processes for the web, thick client, and mobile applications.
- Implement the execution of the audit plan and ensure effective audit practices for traditional and continuous audits.
- Collaborate with broader Global RBC and CUSO IT teams and departments to achieve the plan (where needed).
- Make recommendations to clients on control deficiencies and follow up to ensure significant deficiencies are corrected.
- Assist business management to develop appropriate action plans to address identified deficiencies, and ensure corrective actions are implemented in a timely manner to effectively address the issues.
- Plan and execute on moderate to complex and confidential/special audit projects enterprise-wide as requested by senior management of the Bank.
- Communicate trends in risk and control issues to senior management on the results of ongoing reviews of the businesses that are key relationships, or any other business as requested.
- Provide support for CNB IT and US-wide regulatory requests, responses, and meetings.
- Raise the technical knowledge of the group through various courses, seminars, and in-house training in the areas of Information Technology for existing and emerging technologies, and related risk management framework, compliance, and audit techniques.
- Raise the technical and business knowledge of the group through IT and business auditor cross-integration and allocation.
- Identify new opportunities that would result in cross-team collaboration, develop talent for future roles, and create a mutually beneficial situation that allows business and IT auditors to cross-pollinate experience and knowledge.
Requirements
- Bachelor's Degree or equivalent
- Minimum 5 years banking/audit experience within Information Technology, with Cybersecurity and Infrastructure audit experience
- Minimum 3 years of business experience in a financial institution or technology company, dealing with multiple business platforms, business processes, geographies, and legal entities
- CISA - Certified Information Systems Auditor
- CISM - Certified Information Security Manager
- CIA - Certified Internal Auditor
- CEH - Certified Ethical Hacker
- CISSP - Certified Information Systems Security Professional
Nice-to-haves
- Understanding of network, desktop, and server technologies, including experience with network intrusion methods, network containment, segregation techniques, and technologies such as Intrusion Detection Systems (IDS) and Intrusion Protection Systems (IPS)
- Experience with Windows Active Directory and related exploits/misconfigurations
- Experience with SIEM technologies, log management tools, security analytics platforms
- Security with the software development lifecycle
- Data Loss Prevention (DLP)
- Familiarity with Microsoft SQL database functionality and exploitation
- Knowledge of cloud architecture designs and patterns in multi-cloud and hybrid cloud environments
- Understanding insider threat detection, network security, and traffic analysis hunting for malicious activity and initiating response actions
- Experience with open-source security tools including Wireshark, Nmap, burp, and Kali
- Demonstrable Threat hunting experience
- Understanding of advanced persistent threat (APT)
- Knowledge of US regulatory requirements, and industry best practices, including NIST Cybersecurity Framework
- Experience in leveraging data to perform data analytics and building dashboards to drive continuous monitoring and evaluation of security metrics
Benefits
- City National Bank is an equal opportunity employer committed to diversity and inclusion
- All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status, or any other basis protected by law
Hard Skills
Active Directory
1
Make
1
Nmap
1
SQL
1
Wireshark
1
5aDwsngiH7ELOB gxsXp50
0
64dfAv5mn YIxgC39L
0
7Et9YRSZopQ1 kb49sOfS
0
7I6f0 PrH3RXMKm6i
0
7y1nIcT5Rl 2E0BDC4mq1 fmW385Ha
0
8VIu2Pf saAjZcwe5O0L
0
8na9PyH3IYwZvG 2l3Jb1rWLIqZ
0
8zBL5N3AsrI 8uwLNfpBZC4dO
0
9jkuVaHpM nTuq6Qe1S
0
CWnG1xtPar2y VTnwGOzP
0
F0DRvyBI1q8o qLIPTkgRs2D
0
Fjh4vA9 5cIsGAKzdp
0
JhTV8 cktLBsqE0M
0
JjBu3TRACO o4nA ZyUDolA0Xe
0
LKmHR 1tJ7Yzyoc6q
0
Pe0m52 NHsxfWDIj
0
RAOQtGXLN WP1AiNwuEcH
0
RYCd3vw8Jf 5nqwUtYk0
0
UBvMHt6SIkh IQxtwCnGM
0
Unz4t HGEiftk2
0
X3zN56UkM DATnIs1xo
0
X5JRpMhN S2ctCUl7W
0
XaCD lRzfSVC3awg
0
YrI3O5t8bBK dlM4v63paLs
0
c4fev0 dPmAb7fUN
0
fMxqAQ4e9E 2L3vk5JxnoRg
0
gMTBFdorueRy bhGM9S4RnKw
0
i3p Q1cNk O6uTZYhmBa9
0
iH0VI3g clKExiwZPL
0
onKCtk4Wy9 au9mtWGE
0
q1hWSpkEQjaf XzBwd Mkmz9Li5nOy
0
qU7Jwf6N3 d1Pq9DW54Hmeo
0
rVqh8mTLZabG AwxuNJs2
0
rZlwg cpUNLJ1DI
0
sJqWleL6chN VMURLaie7
0
tMsq36iey LM21wybVf
0
wkZLFcSH6se8
0
xU1Cn4JAGcZ LnBqFKJb9
0
xU5MtIjTYyO dRXfb 6MIfaV5N1Ht
0
zUkT4 gAWKmjt8ihX
0
A Smarter and Faster Way to Build Your Resume