Audit Manager / Information Security Audit Team Charlotte, NC

Charlotte, NC, United States

Audit Manager / Information Security Audit Team

Charlotte, NC

Total Openings: 2

Req # : 5588564 | Type: Full Time | Posted: 7/28/2021 | Edited: N/A | Fee: 20% Percentage Computed On Base Salary

we are looking for talented people who will put our customers at the center of everything we do. We are seeking candidates who embrace diversity, equity and inclusion in a workplace where everyone feels valued and inspired.

Help us build a better It all begins with outstanding talent. It all begins with you.

Internal Audit is a provider of independent, objective assurance services delivered through a highly competent and diverse team. As a business partner, Audit helps the company accomplish its objectives by bringing a systematic, disciplined approach to evaluate and improve the effectiveness of risk management, control, and governance processes.

The Enterprise Technology Audit Group - Information Security Audit Team is looking to fill a Senior Audit Manager position to support the coverage of Wells Fargo’s core Information Security and Cybersecurity controls (e.g., Cyber Threat Fusion Center, Data Loss Protection, Security Information and Event Management, Cryptographic Services, Patch and Vulnerability Management, Network Security Management, Access Management, Third Party Information Security Management etc.). We’re building a Cybersecurity Audit function for the future and looking for high-energy talent to join us on our journey!

You’ll be part of a team that provides audit coverage of the controls and tools that provide the front line protection for the Bank’s critical systems and data. Given the dynamic nature of the external threat landscape, you’ll be exposed to cutting edge technology and threat management techniques. We’re looking for team members that have a passion for Cybersecurity and a continual thirst for knowledge in this fascinating and critical space!

The Role:

As an Audit Manager, you’ll play an important and dynamic role in providing coverage of Cybersecurity. This will involve day-to-day oversight and direction to high-performing teams, connecting with our business partners and regulators, and executing the audit plan. You’ll also monitor the business to identify key emerging risks.

Key job responsibilities for this position include the following:

•Becoming a subject-matter-expert in various Cybersecurity disciplines so that you can be viewed as a trusted advisor on risks in these areas to management and audit leadership.

•Maintaining an ongoing knowledge of the people, processes and tools that interact in this area so that you can keep the big picture in mind as you design your work approach and structure your opinions.

•Leading audit execution teams with integrity and creating an environment where team members feel included, valued, and supported to do work that energizes them.

•Accomplishing management responsibilities to provide day-to-day oversight of audit execution including designing the scope and approach for information and cyber security audits, providing ongoing coaching and feedback for audit team members, identifying and managing risks, and completing daily management tasks.

Required Qualifications:

•7+ years of experience in one or a combination of the following: audit, control testing, control and risk identification, or audit analysis demonstrated through work or military experience

Desired Qualifications:

•Experience at a financial institution or accounting firm

•A BS/BA degree or higher

•Solid knowledge and understanding of audit or risk methodologies and supporting tools

•Understanding of financial regulatory environment

•Certification in one or more of the following: CPA, CAMS, CRCM, CIA, CISA or Commissioned Bank Examiner designation

•Excellent verbal, written, and interpersonal communication skills

•Strong organizational, multi-tasking, and prioritizing skills

•Ability to work effectively in a team environment and across all organizational levels, where flexibility, collaboration, and adaptability are important

•Ability to execute in a fast paced, high demand, environment while balancing multiple priorities

•Solid problem solving skills

•Good analytical skills with high attention to detail and accuracy

•7+ years of increasing responsibilities within IT audit, including experience leading and supervising audits (external and/or internal).

•Demonstrated experience assessing scaled and highly complex environments, preferably in the financial services sector. Knowledge of IT, information security and Cloud management and control frameworks (e.g. NIST Cybersecurity Framework and 800-53, CIS Top 20 Critical Security Controls, FFIEC IT Examination Handbooks, COBIT, FedRAMP, ISO 2700x, ITIL.

•CISSP, CCSP, CCAK and Ethical Hacker certifications would be highly regarded, as well as CSX Nexus Cybersecurity and Cybersecurity Audit Certificates from ISACA.

•Experience assessing Cyber Threat Fusion Center controls, techniques and tools cryptographic controls and solutions logging and monitoring anti-virus network security data loss protection endpoint protection offensive security research team controls third party information security risk controls vulnerability configuration patch and access management controls.

•High–energy self-starter who thrives in large, complex environments and challenging situations must have the ability to adapt to change quickly and adjust work in a positive, professional manner ability to work in a dynamic environment with multiple time constraints.

•Experience working in a highly formal audit environment, including preparation of formal test of design and test of effectiveness work-papers, sample selection through use of formal sample selection tools, process and control flow-charting, and audit methodology compliance. Show Less

#J-18808-Ljbffr