IT Auditor

Insight Global is seeking two Senior IT Auditors to join one of their top financial companies in Long Island, NY. These individuals will be joining the IT Audit organization which is currently 13 total team members. The individuals in this role will overall be responsible for performing audits relating primarily to our clients information technology environment including business process automation, cybersecurity, third-party governance, SOX ITGC etc. As a member of the Internal Audit team, these individuals will be a critical part of an expert group that aligns internal audit practices with the key risks and strategies of the bank and will manage anywhere from 2-3 audits at any given point in time. Aside from their work managing their assigned audits they will research and prepare meeting agendas for discussions with different teams within the Information Technology organization to document end-to business processes, risks, and technology controls. They will be responsible for identifying risks, determine control objectives, identify control procedures that address those objectives, and assess the adequacy of those procedures along with creating document request lists, gathering evidence, and performing audit testing. Lastly these two individuals will be expected to draft audit reports following completion of the fieldwork portion of the reviews to reflect the facts, observations, risks, and recommendations in a concise and accurate manner.

7-10+ years of recent experience as an IT Auditor

7+ years of recent experience performing audits for Information Security, Network Security, Infrastructure, Core Processing and Application Development

Strong working knowledge of Sarbanes-Oxley Section 404, FFIEC IT Handbook, NIST, ISO, COBIT and ITIL

CISA Certified

Bachelor's Degree required

Experience in commercial banking or private banking

Strong written and verbal communication

Experience or working knowledge of FFIEC IT Handbook and Cybersecurity Assessment Tool, NIST Cybersecurity Framework and NY DFS 23 NYCRR 500 (Cybersecurity Requirements for Financial Services Companies)

Experience auditing any of the following DMZ, Network Security, Data Loss Prevention, Privileged Access Management, Data Lakes, Vendor Risk Management, Internet banking, core banking systems or lending systems

Benefit packages for this role will start on the 31st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.