Senior IT Auditor, Internal Audit - IT

Description

Founded in 1963, FirstBank maintains more than $20 billion in assets and operates over 100 branch locations across Colorado, Arizona and California. Its growth can be attributed to one simple philosophy: do right by customers, communities and employees, which is at the center of the company's "banking for good" mantra. FirstBank believes that diversity, equity, and inclusion are part of everything we do, both within and outside our company, and prides itself in hiring and training a diverse and talented group. We strive to not only maintain a diverse workforce, but also ensure our employee experience garners a sense of belonging, is inclusive and equitable. FirstBank believes that a company is nothing without the people that comprise it, and prides itself in hiring and training a diverse and talented group. By joining the FirstBank team you will experience its great team culture with ample opportunity for growth. There's an opportunity for everyone with positions all across the company, from Teller and Call Center to Technology and Lending. Apply today to learn more and join the team!

A Brief Overview

The Audit Department is responsible for ensuring markets and centralized departments are in compliance with federal and state regulations, as well as internal policies and procedures. The Analyst acts in both an assurance role as well as a consulting role. The Analyst-IT Audit is responsible for executing Information Technology (IT) audit fieldwork and contributing to IT audit risk assessment, planning, and reporting activities. This role will serve as a liaison between the Internal Audit Department, various IT Departments and external IT examiners and auditors. In this role, the Analyst-IT uses critical thinking skills to complete assigned test work in an independent manner, utilizes available resources to research and understand different levels of risk and risk-mitigation tactics.

What you will do

• Develop and implement audit programs

• Complete audit programs, including planning and being the auditor-in-charge for assigned audits

• Create risk control matrix on prospective engagement client for complex departments

• Record each audit procedure to document work performed and results obtained

• Integrate IT audit concepts into the financial, regulatory and operational audits

• Contribute to the review of IT audit testwork

• Identify risks and effectively communicates risks and proposed risk mitigation strategies to markets and centralized departments

• Coordinate and lead others to accomplish program objectives for complex audits within agreed upon deadlines

• Assist outside auditors to expedite their work

• Evaluate the design and operating effectiveness of controls over operational, financial and regulatory processes

• Develop an understanding of FirstBank's varied IT environment components including hardware; software; applications; databases; and security systems, and the relationships between these technologies and business processes

• Research, understand and stay current on Cybersecurity risks and industry trends

• Assist in drafting audit reports for Audit Management

• Create audit work papers in accordance with Internal Audit standards, and navigates within various FirstBank applications and the eGRC system

• Conduct consulting and assurance activities to assess risks and internal controls for projects such as new system implementation

• Train and mentor other employees and identify training and development needs of staff

• Develop and maintain relationships with IT personnel to assist and expand the consulting role of the Audit Department

• Complete minimum Continuing Professional Education (CPE) requirements and maintain certifications

• Perform other duties and projects as assigned

• Understand and comply with all provisions of the Safety in the Workplace policy

Minimum Requirements

• Typically requires a bachelor's degree in related field (Computer Science or Business with CSI) and a minimum of 2 years of related experience

• A combination of post-high school education, job related certification and related experience equivalent to 5 years may be considered in lieu of minimum requirements

• Professional certification (i.e. CISA, CIA) obtained or in progress

Preferred Requirements

• Previous IT Auditor experience planning and/or leading audits in a public company or bank

• Previous experience with audit-specific data analytics techniques

Knowledge, Skills, and Abilities

• Knowledge and understanding of risk identification, control design assessment, and control testing

• Knowledge of business information systems and information security

• Strong leadership skills and ability to achieve maximum performance through training and coaching

• Ability to solve complex problems and implement solutions

• Critical analysis skills to assess alternative solutions, conclusions or approaches to solve problems

• Active learning skills to understand the implications of new information for problem solving and decision making

• Active listening skills to understand the points being made by asking questions

• Strong knowledge of business processes in the financial industry

• Knowledge of COSO and COBIT-19 frameworks, and risk and control analysis

• Excellent verbal and written communication skills

• Proficiency in Microsoft Word and Excel, PDF and similar applications, and ability to learn and work in the eGRC system

• Ability to work under strict time constraints and meet deadlines

• Knowledge of applicable regulatory guidelines

• Proficient knowledge of data analytic strategies

Working Conditions and Physical Requirements

• Frequently remains stationary throughout a typical business day

• Frequently operates a computer and other office machinery, such as a calculator, copy machine, and computer printer

• Occasionally moves about inside the office to access file cabinets, office machinery, and other rooms

• Occasionally positions self to access drawers and shelves of various heights

• Frequently reaches for and handles paperwork and files

• Constantly communicates with customers, coworkers, and management in-person and on the phone

• Must be able to exchange accurate information

• FirstBank does not currently offer fully remote positions, except as required by law. The actual number of in-office days that may be required will vary by business unit, role, and business need.

Salary Range

$100,000.00 to $125,000.00

Statement of Benefits

FirstBank offers a suite of benefits that support our employees' professional, financial, physical, emotional and spiritual well-being. Benefits currently offered with our positions include: Paid Time Off/paid leave programs, 401K/Employee Stock Ownership, United Healthcare medical, MetLife dental, VSP vision, Employee tuition reimbursement, Volunteer Time Off, Short-Term Disability, Long-Term Disability, and Group Life Insurance/AD&D

FirstBank is an EOE/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to age, race, color, religion, sex, sexual orientation, gender identity, national origin, genetic information, disability, veteran status, or any other legally protected characteristic. FirstBank does not permit pay inequities. Anyone who believes they have been subject to pay inequity should immediately report their concerns to the Human Resource Department.

This job opportunity is expected to close on May 31, 2024

Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities

The contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor's legal duty to furnish information. 41 CFR 60-1.35(c)