Technology Auditor Senior Associate - Infrastructure Platforms

Our Internal Audit group is an independent function accountable to the Audit and Examining Committee of the Board of Directors, the Office of the Chairman, senior management and our global and local regulators. Internal Audit is comprised of more than 1,000 auditors, located in key locations across the globe, and is responsible for assessing the adequacy of the control environments across the firm's lines of business.

As a Technology Senior Auditor (Associate) within the Infrastructure Platforms Technology Audit Team, you will execute the annual audit plan, participate in audit engagements by performing audit testing, and participate in various continuous monitoring efforts. This position is ideal for someone with knowledge of various technologies, operating systems, databases and network components, including in cloud-based environments, as well as the audit and risk skills to be able to effectively execute global technology audits.

• Participate on technology audit engagements, from planning to reporting, and produce quality deliverables to both department and professional standards, while ensuring audits are completed timely and within budget.
• Work closely with global Audit colleagues in the early identification of emerging control issues, and report them in a timely manner to Audit management and business stakeholders
• Partner with stakeholders, business management, other control groups (i.e. risk management, compliance, fraud prevention), external auditors, and regulators, establishing strong working relationships while maintaining independence
• Finalize audit findings and use judgment to provide an overall opinion on the control environment by developing recommendations to strengthen internal controls
• Communicate audit findings to management, and identify opportunities for improvement in the design and effectiveness of key controls
• Stay up-to-date with evolving industry/regulatory changes impacting the business and participate in appropriate control forums
• Find ways to drive efficiency with existing technical infrastructure through automation while embracing the innovative opportunities offered by new technologies
• Recognize the confidential nature of Internal Audit communications and access to information; exercise discipline in protecting the confidentiality and security of information in accordance with firm policy

• Extensive internal or external technology auditing experience, or relevant technology risk and control management experience.
• Knowledge and experience in various Technology and Cyber domains, for e.g., Architecture, Vulnerability Management, Cloud, etc.
• Understanding of internal control concepts, with proven ability to evaluate and determine the adequacy of controls by considering business and technology risks in an integrated manner.
• Strong analytical skills, particularly in regard to assessing the probability and impact of an internal control weakness
• Excellent written, verbal, and presentation skills; adept at presenting complex and sensitive issues to senior management and strong interpersonal and influencing skills, with the ability to establish credibility and build partnerships with senior business and control partners
• Enthusiastic and self-motivated, with a keen interest in learning; effective under pressure and willing to take personal responsibility/accountability as well as flexible to changing business priorities and ability to multitask in a constantly changing environment

• Experience with internal audit methodology and applying concepts in audit delivery and execution preferred
• Certified in CISA, CISM, CRISC, CISSP, CCSP or other technology certifications
• Risk management knowledge in public cloud provider (AWS, GCP, Azure) services
• Bachelor's degree in Technology or related field