Manager, IT Internal Audit
Responsible for partnering with the SVP in the leadership of the IT Audit function for Triumph Financial which includes all business units’ technology processes. Ensures timely review and audit of all critical technology risks.
Essential Duties & Responsibilities:
Implements GRC tool, including an audit request library to ensure that all audit related documentation requests are not duplicated between Internal Audits, SOX, SOC 1,2 and external audits.
Creates and maintains a master tracking mechanism, outlining all audit related activities and milestones.
Ensures that all SOX and audit related timelines are aligned to maximize efficiencies.
Ensures all action plans from completed IT audits are tracked, documented and validated in accordance with Internal Audit Standards.
Assists with creation of Audit Committee and other Committee materials as applicable.
Ensures the implementation of internal audit standards and guidance.
Suggests additions to the audit standards and guidance on a continual basis.
Represents IT audit to the regulatory agencies during exams.
Assists with the goal of balancing the execution of IT audits both internally and externally using a risk, cost and efficiency based perspective.
Leads IT Audit project management, scoping & planning activities ensuring the timely communication and completion of audit deliverables in accordance with the approved audit plan.
Assists with assessment, creation, and implementation of risk-based audit universe and plan.
Assists in assessing outsourced service providers; supervises the work of outside service providers.
Assesses risk in IT auditable areas; assesses IT risk and controls.
Ensures outside service providers are following new internal audit standards.
Evaluates cost savings and opportunities to streamline audit work and projects.
Works closely with the Enterprise Risk team to ensure IT Internal Audits are aligned with critical IT risks as part of the initial scoping. Provides feedback on critical IT risks identified through the audit process that need to be added to the IT risk universe.
Focuses on executing streamlined and efficient audit process from beginning to end.
Leads the communication of audit plan, status and results with key stakeholders, both written and verbal.
Maintains a spirit of partnership with the business process owners, while also ensuring objectivity in decision making and communication and internal audit deliverables.
Manages the outside service provider’s execution of IT SOX testing. Coordinates with the IT GRC team to ensure timely delivery of all document requests and audit timelines.
Performs other duties as assigned.
Experience & Education:
Bachelor’s Degree in Business, Management, Accounting, Finance, Math, Computer Science or related field.
At least one IT Audit certification required.
7+ years of IT audit experience.
5+ years’ experience leading and managing technology audits, including experience managing and supervising a team.
Experience using data tools and RPA.
Prefer a certification in CISA or CISSP or ISO-27001
Must have knowledge of FFIEC CAT
Skills & Abilities Required:
Advanced knowledge of internal audit standards & guidelines.
Advanced knowledge of technology service provider and financial service risks and controls.
Advanced project management and time management skills and techniques
Ability to provide concise and articulate information, both written and verbal.
Ability to work both independently as well as in a collaborative environment; developing relationships with key business partners in critical.
The work environment characteristics described here maybe encountered while performing the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
Moderate noise (i.e. business office with computers, phone, and printers, light traffic).
Ability to work in a confined area.
Ability to sit at a computer terminal for an extended period of time. Occasional stooping or kneeling may be necessary.
While performing the duties of this job, the employee is regularly required to stand, sit, talk, hear and use hands and fingers to operate a computer keyboard and telephone.
Specific vision abilities are required by this job due to computer work.
Light to moderate lifting is required.
Regular, predictable attendance is required.
Add any travel or other physical requirements, as needed
Triumph Financial, Inc. and its subsidiaries, provide equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, gender, sexual orientation, national origin, age, disability, genetic information, marital status, or status as a covered veteran in accordance with applicable federal, state and local laws.