Senior IT Auditor; Advisory and Technology Implementation

Overview

To contribute to the planning and execution of complex IT, information security, pre-implementation, and integrated engagements. May act as an Auditor‑In‑Charge on engagements and will participate in Internal Audit initiatives. Play a role in promoting partnership, trust, and accountability within our organization and building deeper relationships with our audit stakeholders.

Navy Federal Credit Union currently does not provide sponsorship for this role. Applicants must be authorized to work in the United States without the need for current or future sponsorship.

• Contribute toward the planning and execution of IT and/or integrated audits in accordance with Navy Federal and industry audit standards
• Perform pre‑implementation reviews of new technology
• Analyze and assess Navy Federal's technological infrastructure to ensure processes and systems run accurately and efficiently, while remaining secure and meeting compliance regulations
• Plan and execute audits of the organization's IT systems in place to provide for confidentiality, availability and integrity of system and processes
• Develop risk‑based audit objectives, scopes, and test plans to ensure NFCU's IT systems and infrastructure are compliant with regulation, requirements, policies, and standards. Occasionally act as Auditor‑In‑Charge on IT/integrated audits of lesser risk/complexity, providing guidance, coaching, and direction to Internal Audit staff regarding Navy Federal practices and industry standards
• Coordinate with points of contact and first/second lines of defense to conduct preliminary research, lead process walkthroughs, document process narratives and workflows, identify key risks and controls, and obtain audit evidence for testing
• Identify opportunities to leverage data analytics and technology to drive deeper risk coverage and insights to business partners
• Work across multiple audits concurrently. Apply critical thinking skills by seeking to understand and execute assigned control testing and document results according to professional and internal standards
• Independently review and analyze audit evidence and results of testing to determine design and operating effectiveness of controls
• Identify and quantify issues and provide risk‑based recommendations to implement and enhance internal controls to management in a timely manner
• Prepare audit work papers to document relevant information obtained, analyzed, and evaluated that support audit observations/issues and conclusions
• Work collaboratively with other departments and stakeholders to provide insights and recommendations for improvement
• Partner with business areas to ensure adequate remediation plans are developed and implemented
• Contribute toward the development of high‑quality, well‑written, and timely audit reports for senior management, the President/CEO, and the Supervisory Committee
• When asked to operate as an Auditor‑In‑Charge, review work papers prepared by internal auditors assigned to audits and provide coaching and mentoring
• Manage audit timelines to ensure the timely reporting of identified risks and issues; report delays and issues in overall audit to management and lead resolution of audit project issues
• Participate in Internal Audit strategic initiatives and act as a champion of change and continuous improvement
• Stay abreast of and ensure compliance with applicable federal, state and industry laws, regulations, and guidelines
• Actively monitor and stay current with evolving industry trends, technology, and emerging risks that may impact the company
• Perform other duties as assigned

• Minimum three years of experience in IT audit, with strong knowledge of IT control concepts and practices and risk‑based auditing techniques
• Advanced knowledge of IT Risk, General Controls, Information Security Frameworks and best practices
• Advanced knowledge of technology and financial systems risk assessments and documentation
• Experience leading IT/integrated audits and/or overseeing other audit staff in the execution of audit work
• Advanced interpersonal and communication skills, including experience working with all levels of staff, management, stakeholders, and…