It Audit Associate Jobs (NOW HIRING)

Hiring Range: $109,386 - $179,706

The posted salary range reflects Eastern's expected hiring range. Actual pay may vary based on experience, skills, and market factors; additional compensation may apply. Eastern offers a robust benefits and retirement package. Please see the description of benefits included with this job posting for additional information.

Assists the Audit Director and Chief Auditor in carrying out the mission of the Internal Audit Department.  The IT Audit Manager is responsible for planning, executing, and overseeing riskbased technology audits across the Bank's IT environment. This role evaluates the design and operating effectiveness of controls related to information security, IT operations, application systems, data management, IT governance, and regulatory compliance.  The IT Audit Manager supervises audit staff and third-party co-source vendors, partners with business and technology leaders, and ensures internal audit work complies with IIA Standards, bank regulatory expectations, and internal audit methodology.

• Manage the planning, documentation, staff assignment, performance and reporting of regular periodic internal audits of various departments within the Bank, including audit selection, application of the audit approach, performance of selected audit procedures in high-risk areas, review of audit work papers, generation of audit reports, ensuring business line's implementation of processes to rectify internal control deficiencies and / or improve operational deficiencies
• Assist in the development and execution of a comprehensive audit program, including  identifying and evaluating the company's risk areas through a risk assessment process. 
• Assist the Chief Auditor in development of staff through appropriate hiring, development and training of all staff in audit approach, documentation skills, audit technology, and the industry standards. Sets performance expectations for team members, provide coaching throughout the audit process, and deliver formal feedback at end of each audit.
• Review draft audit reports and conduct exit meetings with senior management to communicate internal audit findings. 
• Perform/oversee completion of IT SOX control testing and review, document workpapers and issues, system scoping, and coordinate with third party co-source partners and external auditors.
• Manage the effective and timely execution of IT internal audits end to end as assigned from the internal audit plan, from planning through reporting and remediation follow up.
• Act as the Bank's primary liaison with the IT audit co-sourcing providers including evaluation of vendor performance and feedback to management, as needed.
• Participate in audit department planning activities including scheduling testing and staffing, budget 
• preparation, risk assessment, and other IT Audit related duties as needed.
• Plan testing activities throughout the year and regularly report on status to Internal Audit management and other stakeholders.
• Maintain a thorough understanding of IIA and ISACA professional auditing standards and best practice audit procedures and techniques.
• Establish and maintain strong business relationships with both senior and operating level business leaders across the organization, and vendors. Ability to facilitate consensus among diverse stakeholders and ensure clarity of product vision and priorities.
• Apply strategic and data analytics concepts, principles, and techniques to more efficiently and effectively evaluate the IT control environment and identify control deficiencies.
• Assist department with management of Archer, data analytics and AI initiatives, and system access.
• Coach and mentor audit team members, supporting their growth in technical knowledge, project delivery, agile methodologies, and overall personal development.

PROBLEM SOLVING & DECISION MAKING: 

• The incumbent has the freedom to make decisions related to internal audit planning, methodology, scope, staffing, and draft report content. Routine problems and conflicts that can arise during the conduct of an internal audit are resolved by the incumbent. Significant issues are reported to the Chief Auditor, with the expectation that the incumbent will make recommendations for the resolution. Decisions made by the incumbent can affect both the effectiveness and efficiency in executing the internal audit program, as well as overall bank operations.

 Education and Experience  

• A bachelor's degree required, master's degree preferred. Focus in information systems, business administration, data analytics, or other related field or equivalent work experience preferred.
• A minimum of 5-7 years of progressive experience in IT Audit or relevant experience in the financial services industry, at least 3 of which must be in a supervisory role. 

Skills/Knowledge  

• Certification related to IT security or internal auditing in one or more of the following is preferred:  CISA CISSP, CISM
• Knowledge of IT general controls, cyber security, data privacy, IT operations and governance including experience with the COSO Framework, IIA Standards, and audit techniques
• Knowledge for various technology areas such as key Information Security Topics (Identity and Access Management, Authentication Services, Encryption etc.), Operating Systems (UNIX/Linux, Windows), Cloud Technologies (AWS, Azure, etc.), Networking Technologies (Software Defined Networking, Firewalls, etc.), Database Systems (Oracle, SQL Server, etc.), Data Analytics technologies (PowerBI,  etc.), and Infrastructure (servers, containers etc.).
• Experience working with NIST, COBIT, AI, and / or other leading IT control frameworks.
• Must have strong organizational skills, project management skills, and capability to manage multiple projects with minimal direction in a dynamic and fluid environment
• Proficiency in Sarbanes-Oxley compliance, advanced security concepts, emerging technologies, system implementations and project management.
• Must have the ability to prioritize and simultaneously handle deadlines, managing timely satisfaction of ad hoc requests and regular deliverables
• Must be an articulate communicator with strong written and verbal skills
• Must have management experience and demonstrate an ability to build strong relationships, lead, and develop subordinates and complete thorough reviews
• Must be proficient in Microsoft Office applications, audit management systems, and other auditing and data analytics tools. 
• Must have/ maintain current knowledge base of audit industry practices and ensure best practices are always considered when performing audits.