Job description
JOB DESCRIPTION
Position: IT Internal Auditor
Division: Accounting and Administration
Department: Audit
Reports To: VP, Internal Audit Manager
Principal Mission:
- Perform operational, financial, and compliance IT audits for PFFCU.
- Assist the external auditors and regulators in their examinations.
- Perform special projects as assigned by the Internal Audit Manager.
- Assist other areas as required.
- Promote corporate values of member service, teamwork, commitment, and performance.
Major Responsibilities:
- Assist the Audit Manager in creating audit work programs for the areas being reviewed.
The focus will be on IT-based risks and controls including IT governance, IT general controls, risk, compliance, and efficiency. Areas of focus will include creating an IT risk-based audit plan, penetration testing, social engineering, critical vendor assessment, data center security, access controls, DR / incident response, and GLBA.
- Evaluate and test controls, operating policies/procedures, and compliance with regulatory requirements and best practices.
- Document the work performed to clearly indicate the testing done, results obtained, and conclusions reached.
- Report audit results to management (e.g., exceptions to policy or regulations, weaknesses in internal controls, and recommendations for improvement).
- Assist the external auditors in their reviews of the financial statements and other projects.
- Assist the NCUA in their regulatory examinations.
- Assist other 3 rd parties, such as the FHLB, in their reviews.
- Work with our IT department and conduct periodic meetings with IT Security to discuss IT issues and track their resolution.
- Act as the liaison between PFFCU and 3 rd party IT firms that are conducting reviews, ensuring the reviews are completed timely and objectives are met.
- Assist and/or backup others in Internal Audit as needed.
- Perform non-IT audits as needed.
- Assist the Internal Audit Manager with any special projects assigned.
- Perform other duties as assigned.
Skills / Knowledge Required:
- B.S. degree in Computer Science, Information Technology or related field or equivalent experience.
- 3 years Audit experience.
- 2 years IT Audit experience.
- Experience leading and executing risk-based IT focused internal audits, risk and control assessments, and leveraging IT governance and control frameworks (COBIT, NIST, CSF, ITL etc.)
- Proficient in methodologies for GLBA, FFIEC and ACAT internal control programs
- One or more IT Security Certifications or plans to obtain one, such as OSCP, GWAPT, GPEN, LPT, CPT, CEPT, CISSP, CISA, CISM, CEH etc.
- Ability to:
- analyze an area,
- recommend improvements,
- work with minimal supervision,
- work well with others,
- communicate clearly and effectively, both orally and in writing.
- Sound business judgment, discretion, attention to detail
- Knowledge of Microsoft Windows and Excel.
- Ability to work with others in a constructive manner that supports PFFCU’s values of member service, teamwork, commitment, and performance.
- Ability to use a personal computer; entering information via keyboard and accessing information from a computer screen.
Hours: Mon-Fri, 8:15AM-4:15PM Travel: Work at Greenwood locations, travel to/from other locations.
Police and Fire Federal Credit Union
www.pffcu.org
Philadelphia, PA
John LaRosa
Unknown / Non-Applicable
501 to 1000 Employees
Nonprofit Organization
Banking & Lending