Senior Auditor - CTO

At U.S. Bank, we’re on a journey to do our best. Helping the customers and businesses we serve to make better and smarter financial decisions and enabling the communities we support to grow and succeed. We believe it takes all of us to bring our shared ambition to life, and each person is unique in their potential. A career with U.S. Bank gives you a wide, ever-growing range of opportunities to discover what makes you thrive at every stage of your career.

Try new things, learn new skills and discover what you excel at—all from Day One.

The Technology Senior Auditor executes risk-based technology audits and advisory activities across the enterprise, partnering with Technology, Line of Business, and Risk/Compliance/Audit (RCA) stakeholders to assess risks, evaluate controls, and strengthen the overall control environment
.

This role combines technical expertise and audit discipline to deliver clear, actionable insights
, support regulatory compliance, and proactively identify risks impacting systems, processes, and infrastructure. The position also serves as a key liaison across Lines of Defense
, ensuring alignment between technology risk management and business objectives.

• Execute end-to-end IT audits , including:
• IT General Controls (ITGCs), application controls, and key report validation
• System mapping, data flows, interfaces, and infrastructure controls
• Assess control design and effectiveness across areas such as:
• Cloud (AWS, Azure), infrastructure, and platforms
• SDLC, Agile, Dev Ops, and CI/CD pipelines
• ITIL processes and service management
• Identify control gaps, operational deficiencies, and root causes of risk exposure

• Collaborate with audit teams and stakeholders to define audit scope, objectives, and risk coverage
• Develop and execute risk-based test plans , including for emerging technologies
• Analyze technical configurations, process documentation, and data to support audit conclusions

• Identify risks arising from inadequate processes, systems, or human factors
• Provide practical, solution-oriented recommendations to mitigate risk and improve controls
• Support the development and sustainability of effective risk management frameworks
• Escalate risks appropriately and contribute to forward-looking risk identification

• Serve as a functional liaison between Technology, Line of Business, and Lines of Defense
• Build relationships with stakeholders, including senior management
  , to:
• Communicate audit scope, status, and results
• Deliver insights in a clear, concise, and business-relevant manner
• Collaborate across global teams and support enterprise-wide initiatives

• Manage multiple audit assignments in a fast-paced, dynamic environment
• Identify opportunities to enhance audit methodologies, processes, and tools
• Support internal initiatives aimed at operational excellence and capability uplift

• Ensure alignment with applicable laws, regulations, and internal policies
• Apply relevant frameworks and standards (e.g.,
  COBIT, ITIL, NIST, ISO, FFIEC, OCC, COSO
  )

• Bachelor's degree, or equivalent work experience
• Typically more than five years of applicable experience

• 3–7+ years of experience in Technology Audit, IT Risk, Internal Audit, or Consulting
• Foundational to strong understanding of IT risks, controls, and audit methodologies
• Experience with:
• Cloud computing (AWS, Azure), infrastructure, and networking
• APIs, system integrations, data protection, and authentication protocols
• Databases, Active Directory, and emerging technologies (e.g., AI)
• Familiarity with industry frameworks (COBIT, NIST, ITIL, ISO standards)
• Strong analytical skills, including data analysis and root cause identification
• Ability to manage competing priorities and deliver under tight timelines
• Excellent written and verbal communication skills
  , with the ability to translate technical risks into business insights
• Professional certifications preferred (e.g.,
  CISA, CIA, CISSP, CPA, AWS, Azure
  )

* This role requires working from a U.S. Bank…