Director, Audit - IT Security

San Antonio, TX, United States

Why USAA?

Let’s do something that really matters.

At USAA, we have an important mission: facilitating the financial security of millions of U.S. military members and their families. Not all of our employees served in our nation’s military, but we all share in the mission to give back to those who did. We’re working as one to build a great experience and make a real impact for our members.

We believe in our core values of honesty, integrity, loyalty and service. They’re what guides everything we do – from how we treat our members to how we treat each other. Come be a part of what makes us so special!

The Opportunity

Our Director, Audit leads the planning, execution and oversight of the consolidated annual audit plan including risk-based assurance and advisory engagements driving quality of audit work for a designated staff agency or line of business/functional area. Maintains knowledge of financial services regulations and effectively responds and interacts with regulators. Provides oversight to multiple audit engagements, engagement planning, fieldwork and reporting. Manages strategic initiatives and leads in the development and implementation of a risk-based audit plan. Serves, and/or partners with subject matter expert(s) within audit or the business to analyze issues, establish and improve collaborative client relationships, and proactively work with client management to assess risk and improve internal controls. Responsible for forming teams with the requisite knowledge and skills vital to execute the audit plan, employee retention and overall team development. Ensures fiscally responsible expense management. Provides independent oversight and thought leadership for audit disciplines ensuring that audit plans, frameworks, standards, and processes provide appropriate risk coverage. Adheres to the Institute of Internal Auditors' International Standards for the Professional Practice of Internal Auditing (Standards) and Code of Ethics.

We offer a flexible work environment that requires an individual to be in the office 4 days per week. This position can be based in one of the following locations: San Antonio, TX; Plano, TX, or Charlotte, NC. Relocation assistance is available for this position.

What you'll do:

Accountable for timely delivery and quality execution of audit plan/reports, issue validation, driving continuous monitoring activities, and ensuring appropriate risks are covered for assigned areas of responsibility.

Accountable for quality and providing technical engagement oversight, and approval of engagement risk assessment and audit scope.

Develops and maintains effective working relationships with key stakeholders across the enterprise to ensure audit objectives are effectively met and contribute to the overall mission of USAA.

Oversees the preparation of key reports and communications and may present to governance committees, senior leaders, regulatory bodies and the USAA Board of Directors.

Provides effective challenge and approval of audit engagement scoping, planning, fieldwork and reporting. Provides insight in reviewing audit issues and identified root cause. Recognizes and communicates impact of related issues, MRIAs, MRAs and Enterprise issues on audit engagements and risk profile.

Engages in multiple continuous monitoring and on-going risk routines. Prepares, reviews, and leads continuous monitoring and guides staff in advisory activities, special reviews and investigations.

Leads the implementation and monitoring of audit process and performance standards; identifies and recommends internal audit process improvements. Proactively identifies potential process concerns and follows-up to resolve issues with Audit Leadership.

Communicates effectively with key stakeholders across the enterprise and external regulators to ensure audit objectives are effectively met and contribute to the overall mission of USAA and risk-based and difficult messages are delivered timely.

Responsible for building, directly managing and developing diverse teams with the requisite knowledge and skillsets necessary to execute the audit plan through recruitment, training, coaching, skills assessment results review, performance management and related managerial activities.

Responsible for reviewing results of the annual risk assessment and providing input into the creation of the risk profile.

Updates universe risk assessment information with current and applicable research, industry feedback and audit results. Reviews audit universe for completeness for area of responsibility.

Responsible for the development of the annual Audit plan for assigned areas of responsibility including proper assessment and coverage of risks and emerging risks.

Responsible for providing oversight of issue severity and impact to business processes and the control environment. Escalates broad and systemic themes to Audit and business leaders.

Effectively challenges business management to adopt appropriate policies and procedures and effective controls designed to mitigate risks.

Meets with and provides responses/requested information to regulators.

What you have:

Bachelor's degree in Business or relevant field such as Finance, Accounting, Business, or Information Technology; OR 4 years of related experience (in addition to the minimum years of experience required) may be substituted in lieu of degree.

8 years of audit, financial, insurance, banking, information technology or related business and/or leadership experience.

3 years of direct team lead or management experience leading and directing work with both internal and external partners in a highly collaborative environment.

Experience performing internal audits, external audits, or applying audit, risk, or compliance acumen in a complex operational and regulatory environment.

Experience directly leading or managing work of both internal and external partners.

Broad and comprehensive experience in Audit theory, internal audit principles with demonstrated experience in audit examining, analyzing, assessing, and drawing conclusions from audit work.

Demonstrated experience effectively communicating and challenging Controls with business partners and influencing business outcomes.

Demonstrated critical thinking and knowledge of data analysis tools and techniques and decision-making abilities.

Demonstrated experience in highly dynamic environment undergoing change; ability to deal with competing priorities.

What sets you apart:

Experience executing Information Technology (IT)/Information Security (IS) audit plan/reports.

Expertise in IT general controls, network architecture and security (e.g., network segmentation, firewalls, proxies, encryption protocols, endpoint protection), and technology infrastructure management and platforms (e.g., mainframe, midrange, distributed).

Specific industry frameworks and standards knowledge, includes: COBIT, NIST 800-53, NIST CSF, CRI Profile, OWASP, STIGs, CIS Benchmarks, ISO 27001/2, SOC 2, PCI DSS, ITIL, and FFIEC booklets (e.g., information security, business continuity, etc.).

Internal Audit experience working in a large financial institution.

Experience with compliance requirements including GDPR, GLBA, and CCPA.

The above description reflects the details considered necessary to describe the principal functions of the job and should not be construed as a detailed description of all the work requirements that may be performed in the job.

What we offer:

Compensation : USAA has an effective process for assessing market data and establishing ranges to ensure we remain competitive. You are paid within the salary range based on your experience and market data of the position. The actual salary for this role may vary by location. The salary range for this position is: $138,230 - $264,200. Employees may be eligible for pay incentives based on overall corporate and individual performance and at the discretion of the USAA Board of Directors.

Benefits : At USAA our employees enjoy best-in-class benefits to support their physical, financial, and emotional wellness. These benefits include comprehensive medical, dental and vision plans, 401(k), pension, life insurance, parental benefits, adoption assistance, paid time off program with paid holidays plus 16 paid volunteer hours, and various wellness programs. Additionally, our career path planning and continuing education assists employees with their professional goals.

For more details on our outstanding benefits, please visit our benefits page on USAAjobs.com.

Applications for this position are accepted on an ongoing basis, this posting will remain open until the position is filled. Thus, interested candidates are encouraged to apply the same day they view this posting.

USAA is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

If you are an existing USAA employee, please use the internal career site in OneSource to apply.

Please do not type your first and last name in all caps.

Find your purpose. Join our mission.

USAA is unlike any other financial services organization. The mission of the association is to facilitate the financial security of its members, associates and their families through provision of a full range of highly competitive financial products and services; in so doing, USAA seeks to be the provider of choice for the military community. We do this by upholding the highest standards and ensuring that our corporate business activities and individual employee conduct reflect good judgment and common sense, and are consistent with our core values of service, loyalty, honesty and integrity.

USAA attributes its long-standing success to its most valuable resource: our 35,000 employees. They are the heart and soul of our member-service culture. When you join us, you'll become part of a thriving community committed to going above for those who have gone beyond: the men and women of the U.S. military, their associates and their families. In order to play a role on our team, you don't have to be connected to the military yourself – you just need to share our passion for serving our more than 13 million members.

USAA is an EEO/AA Employer - applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, age, disability, genetic information, sexual orientation, gender identity or expression, pregnancy, protected veteran status or other status protected by law.

USAA is an EEO/AA Employer - applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, age, disability, genetic information, sexual orientation, gender identity or expression, pregnancy, protected veteran status or other status protected by law.

#J-18808-Ljbffr