Job Description
On behalf of our client, an investment management firm focused on investments in mortgage and consumer credit, we are looking for an Assistant Vice President of Internal Audit (AVP). The AVP position is an integral member of the Internal Audit team that provides leadership and direction to the audit team. The AVP oversees and reviews tasks assigned to the auditors, performs complex level professional internal auditing work, and maintains all organizational and ethical standards. This position establishes guidelines to perform the functions required to reasonably assure compliance with internal controls and regulatory/contractual requirements. Additionally, the AVP relies on limited instructions and pre-established guidelines to perform the functions of the job, works with limited or no supervision while performing duties, and provides coaching and professional development to audit staff.
The AVP will be responsible for managing and conducting the Information Technology audits for our client. The AVP has experience in cybersecurity frameworks (NIST, ISO 27001, FFIEC CAT), compliance (NY DFS), data privacy, process automation, cloud security and data analytics software (i.e. ACL). Effective communication, critical thinking, and analytical skills are vital to this position. The AVP assists in the development of the annual plan and risk assessment process. Travel demands are expected to be limited (generally less than 10%).
ESSENTIAL DUTIES AND RESPONSIBILITIES:
The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
While performing the duties of this job, the employee is regularly required to sit and use hands to handle, touch or feel objects, tools, or controls. The employee frequently is required to talk and hear. The noise level in the work environment is usually moderate. The employee is occasionally required to stand; walk; reach with hands and arms. The employee is rarely required to stoop, kneel, crouch, or crawl. The employee must regularly lift and/or move up to 10 pounds. Specific vision abilities required by this job include close vision, color vision, and the ability to adjust focus.
The AVP will be responsible for managing and conducting the Information Technology audits for our client. The AVP has experience in cybersecurity frameworks (NIST, ISO 27001, FFIEC CAT), compliance (NY DFS), data privacy, process automation, cloud security and data analytics software (i.e. ACL). Effective communication, critical thinking, and analytical skills are vital to this position. The AVP assists in the development of the annual plan and risk assessment process. Travel demands are expected to be limited (generally less than 10%).
ESSENTIAL DUTIES AND RESPONSIBILITIES:
- Annual Risk Assessment & Audit Planning
- Conducts interviews with Senior Management to discuss topics such as significant changes (people, processes, systems), strategic objectives, risks, and recommended audit focus.
- Performs annual risk assessment based on established methodology.
- Develops the proposed annual internal audit plan.
- Audit Execution – Planning
- Leads the audit planning process, including audit scope/approach development.
- Prepares the Audit Announcement Memoranda.
- Coordinates audit resources and staffing budgets for each audit.
- Audit Execution - Risk & Control Evaluation
- Develops risk and control matrices to evaluate the design of key internal controls.
- Develops Audit Program and fieldwork steps.
- Develops the auditee request for information (RFI).
- Designs and executes effective control tests and analytical procedures.
- Documents work performed in adequately structured workpapers.
- Audit Execution – Reporting
- Independently identifies meaningful control gaps and develops recommendations that promote continuous improvement in risk management capabilities and the internal control environment.
- Develops well-written audit reports that include a clear and concise summary of the scope of work performed, conclusions reached, and recommended control improvements noted.
- Audit Methodology & Tools
- Performs work consistent with Lakeview Loan Servicing’s Internal Audit Procedures and the Institute of Internal Auditors’ (IIA) International Professional Practices Framework (IPPF).
- Contributes to ongoing improvements in internal audit methodology.
- Project Management, Communication, & Reporting
- Independently leads meetings to gather process understanding, provide audit status updates, and communicate audit results.
- Team & Personnel Development
- Supervises and develops the skills of less experienced team members.
- Pursues career development opportunities, including relevant training, professional certifications, and/or association memberships. Shares information gained with co-workers.
- Maintains all organizational and professional ethical standards, including consistently upholding all Company Tenets (humility, accountability, responsibility, creativity, awareness, suitability, reliability, diversity, integrity, fun, balance, and communication).
- Other duties as needed or required.
- Audit Execution, Methodology, & Tools
- Knowledge of, and ability to consistently apply, internal auditing principles and practices.
- Skilled in critically evaluating processes, risks, and controls.
- Demonstrates proficiency in documenting processes, risks, and controls in narratives, flowcharts, and workpapers.
- Moderate/Advanced Microsoft Excel abilities, including ability to perform data analysis using pivot tables, formulas, or macros. Working knowledge of other Microsoft Office applications (Word, PowerPoint, Visio).
- Data analytics software (i.e. ACL, Alteryx).
- Robotic process automation (i.e. UiPath).
- Artificial Intelligence (AI).
- Machine learning software.
- Enterprise audit-management software (i.e. AuditBoard)
- Project Management, Communication, & Reporting
- Able to leverage appropriate project management tools to monitor audit execution/timelines and provide transparent status updates to audit management.
- Capable of balancing multiple projects simultaneously through effective prioritization and multi-tasking skills.
- Skilled collaborator capable of effective interaction, negotiation, and problem resolution with audit and business personnel.
- Effectively able to lead meetings with team members and auditees and conduct process interviews/walkthroughs with business owners to gather needed information.
- Demonstrates effective business acumen and judgment that is recognized by audit and business managers.
- Able to develop, present, and assist in “selling” control improvement opportunities and business advice.
- Demonstrates proficiency in clearly and concisely documenting audit results in workpapers, memos, and audit reports.
- Team & Personnel Development
- Displays a strong work ethic.
- Ability to lead and motivate audit staff and be a “team player.”
- Experience working in, or adequate knowledge of, industries that include asset management, lending, and/or mortgage servicing a plus.
- Continually builds knowledge of the business and actively expands capabilities through research and focused training. Stays informed of new developments.
- Bachelor’s degree from an accredited college or university in a relevant field of study.
- 5+ years of progressive Internal Audit leadership experience in a complex technology environment (Experience within IT Operations and/or IT Leadership roles within Infrastructure, Security, Application development considered a plus).
- CISA, CISSP, and/or CISM certification(s) or commitment to obtaining an appropriate professional certification.
The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
While performing the duties of this job, the employee is regularly required to sit and use hands to handle, touch or feel objects, tools, or controls. The employee frequently is required to talk and hear. The noise level in the work environment is usually moderate. The employee is occasionally required to stand; walk; reach with hands and arms. The employee is rarely required to stoop, kneel, crouch, or crawl. The employee must regularly lift and/or move up to 10 pounds. Specific vision abilities required by this job include close vision, color vision, and the ability to adjust focus.
Status:
Open