Information Technology Auditor

Company: Five Star Bank
Location: Buffalo
Posted on: August 6, 2022

Job Description:

Position Title: Information Technology AuditorReports To: Internal Audit DirectorDepartment: AuditFLSA Status: ExemptPurpose: The Information Technology Auditor leads the planning and execution of audits that evaluate the adequacy and effectiveness of critical technology and information security functions including application controls, cybersecurity risks, cloud-based technology implementations, and IT general controls as well as financial and operational control activities. Audit coverage includes Sarbanes - Oxley Section (SOX) 404 key control testing. Risk assessments are performed of business activities with relevant testing performed based on the risks and processes associated with the area audited. The IT Auditor develops and utilizes analytics software and robotics processing automation to assist in audits. The Senior Internal Auditor also acts as a mentor to others. Supervisory Responsibilities:Degree of Supervision Received: MinimalSupervision Received (title): Internal Audit DirectorDegree of Supervision Given: NoneSupervision Given to (Titles): N/AEssential Functions:By leveraging available data and analytical tools and utilizing and interpreting various audit, accounting and regulatory compliance reference resources and other relevant sources, develops the scope of assigned internal audits and SOX 404 testing, selects and develops appropriate audit procedures for work programs to achieve audit objectives within hours budgeted. Discusses and reviews work programs with department supervisory staff and/or others assigned to the audit prior to commencing test work in order to maintain consistent, effective audit coverage. Recommends changes and improvements to established work programs and audit testing approaches as appropriate.Evaluates the design and operating effectiveness of the system of internal controls, adherence to established policies and procedures, and regulatory guidance and conducts test work as outlined in the audit work program. Utilizes judgment as to expansion of scope, further test work needed based on trends or exceptions identified. Prepares work paper documentation via software applications to support test work performed and conclusions reached. Explains, clarifies or corrects documentation to clear any review notes generated by the department supervisory staff or audit lead personnel's review of the work papers, conclusions and recommendations.Provides information and supporting documentation for all issues uncovered as a result of the audit to prepare preliminary exit sheets, which detail the level of risk, and proposed solutions to correct the existing issue, prevent future occurrences and add value to the organization. Leads exit meetings with management and other Internal Audit department supervisory staff to discuss proposed recommendations to come to agreeable solutions. Prepares written audit reports to summarize the audit scope, control findings, recommendations and management commitments.Proactively seeks out learning opportunities to enhance skills and competencies related to role.Manages outsourced technology audit engagements and works with external auditors to ensure IT financial reporting control audit requirements are fulfilled.Assists in mentoring and training audit staff. Is a contributing member of project teams as assigned. Provides consulting services to management in developing appropriate internal controls for new products and/or processes as well as enhancements to existing products and/or processes. Demonstrate the standards and principles of the Five Star Bank experience in every interaction with internal and external customers, associates, and stakeholders. Incorporate the high-performance behaviors of teamwork, leading by example, and service in every facet of work.This job description is not exhaustive. The Information Technology Auditor may be required to perform other duties as assigned.Job Related Qualifications - Education and Prior Experience:Required:Education: Bachelor's Degree in Information Systems, Information Technology, Data Management / Analytics, Accounting, Auditing, Finance, or related fieldPrior Experience: 5+ years of Internal audit or public accounting experience, with at least 2 years of experience in information systems auditing, in information systems risk management, or a combination and 2+ years of IT Sarbanes Oxley (SOX) testing experience, e.g. key reports, automated controls, IT general and application controlsLicenses or Accreditation:One or more of the following:Certified Public Accountant (CPA) Certified Internal Auditor (CIA) Certified Financial Services Auditor (CFSA) Certified Information Systems Auditor (CISA) Certified Information Security Manager (CISM) Certified in Risk and Information Systems Control (CRISC) Preferred: Certified Information Systems Auditor (CISA)Certified Information Security Manager (CISM) Certified in Risk and Information Systems Control (CRISC) Preferred:Education: Master's Degree in Information Systems, Information Technology, Accounting, Auditing, Business Administration Finance, or related fieldPrior Experience: 5+ years of Audit experience in the Financial Services industry or in a professional services firm serving financial service clients, with 2+ years of experience in information systems auditing, in information systems risk management, or a combination and 2+ years IT Sarbanes Oxley (SOX) testing experience, e.g. key reports, automated controls, IT general and application controls. Exposure to relevant industry frameworks (e.g. NIST cyber security framework. Competencies:Able to effectively coach, mentor and develop staff in areas of expertise.Self-starter, able to work independently and ensure work is completed to schedule and meets our high-quality standards.Able to adapt to change, embrace bold ideas, test assumptions, and challenge conventional thinking.High level of attention to detail with the ability to follow detailed procedures and ensure accuracy.Develop and maintain strong and effective working relationships with key business partners to deliver outstanding business impact and elevate Audit's value proposition. Demonstrate teamwork, collaboration, a positive attitude, and a high level of ethics.Possess a high level of understanding of audit theory and ability to develop strong industry knowledge.Intermediate level with all Microsoft Office applications including the ability to learn new and existing banking software.Able to handle company and client information and sensitive matters professionally and confidentially.Excellent organizational skills with the ability to manage multiple priorities and meet established deadlines.Excellent verbal and written communication skills.Physical Requirements:Able to regularly sit for prolonged periods of time.Able to travel occasionally within Bank footprint.Extensive computer usage is required.Five Star Bank and affiliate companies are committed to Equal Employment Opportunity and Affirmative Action. We recruit, hire, train and promote persons in all job titles and ensure that all other personnel actions are administered without regard to race, religion, color, national origin, citizenship, sex, sexual orientation, gender identity, age, veteran status, disability, genetic information, or any other protected characteristic. Five Star Bank and affiliate companies are committed to providing reasonable accommodations to employees and applicants with disabilities to the full extent required by the Americans with Disabilities Act (ADA). If you feel you need a reasonable accommodation pursuant to the ADA, you are encouraged to contact us at (585) 786-4344, (585) 498 - 7565 or (585) 786-1417.Note: At a later stage in the application process, applicants may be required to provide information about their criminal conviction history, if any, and to authorize the procurement of a consumer report that will contain, among other things, information about criminal conviction history. Except as required by applicable law, past criminal convictions will not automatically disqualify an applicant from employment, and Five Star Bank will only consider such history in accordance with applicable law. Please be advised, however, that federal law prohibits Five Star Bank from employing "any person who has been convicted of any criminal offense involving dishonesty or a breach of trust or money laundering, or has agreed to enter into a pretrial diversion or similar program in connection with a prosecution for such offense" unless the FDIC has provided prior written consent.

Keywords: Five Star Bank, Buffalo , Information Technology Auditor, IT / Software / Systems , Buffalo, New York