Moteur de recherche d'offres d'emploi Crédit Agricole CIB

IT Senior Auditor (Associate position)

Vacancy details

General information


About Crédit Agricole Corporate and Investment Bank (Crédit Agricole CIB)

Crédit Agricole CIB is the corporate and investment banking arm of Crédit Agricole Group, the 10th largest banking group worldwide in terms of balance sheet size (The Banker, July 2022).
8,600 employees in more than 30 countries across Europe, the Americas, Asia-Pacific, the Middle-East and North Africa, support the Bank's clients, meeting their financial needs throughout the world.
Crédit Agricole CIB offers its large corporate and institutional clients a range of products and services in capital market activities, investment banking, structured finance, commercial banking and international trade.
The Bank is a pioneer in the area of climate finance, and is currently a market leader in this segment with a complete offer for all its clients.

For more information, please visit


By working every day in the interest of society, we are a group committed to diversity and inclusion. All our positions are open to people with disabilities.   



Update date


Job description

Business type

Types of Jobs - General Inspection / Audit

Job title

IT Senior Auditor (Associate position)

Contract type

Permanent Contract

Job summary

Summary of the position

The IT Senior Auditor, under the supervision of a Lead Auditor, performs preliminary assessments of the audited activity and its internal control framework. She/he performs independent testing and analysis on specific controls primarily in Information Technology, CyberSecurity, and Data Governance in order to meet the audit objectives. He/she also contributes to drafting the debriefing presentation and the final audit report sent to Management.

Key Responsibilities:

The IT Senior Auditor may either work independently or supervise one or several junior auditors.

I – Conduct of assignment

When working independently, the Senior Auditor is responsible for carrying out audit work autonomously as per the audit planning within the defined timeframes in accordance with Inspection Générale (“IGE”, the Internal Audit department of the Bank) methodology and procedures and Internal Audit standards. This includes:
- independently carry out audit planning and fieldwork, including:
- A preliminary assessment of the audited activity highlighting the related risks and controls;
- Interviews, testing and analysis of the results of the controls planned in the audit program;
- Assess processes and controls within core IT infrastructure, IT operations, business continuity planning, and IT disaster recovery, business applications, CyberSecurity, Outsourcing processes, data governance and management. These are assessed against the Control Objectives for Information and Related Technology (“COBIT”) framework, local and global policies of the Bank;
- Clearly and completely document in test sheets the controls performed and the conclusions reached;
- Identify and report on strengths and weaknesses of the audited areas, analyze the root causes and risk impact of the identified weaknesses, draft recommendations to address the audit findings and conclude on the effectiveness of the control set-up and business practices;
- Maintain open communication with auditees throughout the audit, including issue vetting with control owners;
- Suggest approaches (including innovative ones) in order to build the Audit Program for each audit assignment
- Present audit conclusions to IGE management and to management of the audited unit (debriefing presentation, final audit report, etc.);
- Keep the Lead Auditor in charge of the assignment/ Local Head of Audit informed of the progress on the audit work assigned, and escalate any issues that may impact or delay the audit execution, or raise any other relevant information on the assigned audit and the risk and control environment;
- Follow up with Management on remediation status to address audit recommendations, and conduct validation of  corrective actions completed;
- Adhere to the audit work paper management practices to ensure complete archiving of all supporting documentation, audit evidence and deliverables in the designated IGE tools;

Supplementary Information

II – Team management


On some engagements, the IT Senior Auditor may be asked to assist junior team members or external resources by providing:

- Guidance on audit techniques and expected deliverables

- Feedback on testing, documentation, and conclusions of test results and findings

- Assistance in developing collaborative and productive relationships within the team  throughout the International Network and with auditees


III – IGE Continuous improvement Program / Transversal topics


The IT Senior Auditor contributes to the continuous improvement of IGE methodologies and processes. In addition to the audit responsibilities, she/he may be requested to:

- Provide input to update audit guides or training materials related to specific activities based on existing knowledge, documentation, interviews, etc.

- Build and share knowledge (e.g. through contributing to SynerGIA, delivering training or taking part in various Methods and Support workstreams or assignments)

- Participate in one or several knowledge communities within IGE


At a minimum, the IT Senior Auditor must also complete within the defined timelines all annual required training on banking and regulatory matters to maintain a sufficient knowledge of the audited area for which she/he is responsible. 


Salary Range: $120k - 135k

Position location

Geographical area

America, United States Of America



Candidate criteria

Minimal education level

Bachelor Degree / BSc Degree or equivalent

Academic qualification / Speciality


Bachelor or Masters’ degree in Information Technology, business, finance, math, engineering or related field


Industry recognized certification (CISA, CISSP, CISM, ACAMS, CPA, CIA)

Level of minimal experience

3-5 years



3-5 year experience in audit (internal / external) or banking organization or IT


Previous experience in a bank

Required skills

·      Auditing techniques

·      Understanding of the risks generated by banking / securities activities

·      Specific skills/knowledge on IT and IT risks

·      Ability to perform basis coding in Python, Java, Javascript.

·      Ability to perform data analytics using spreadsheets, databases, Python, PowerBI

Familiarity with commonly used tools such as ServiceNow, vulnerability scanners and penetration testing tools etc

·      Any specific skills knowledge in using core IT systems of the Bank (understanding of the data production, analysis of the results)

·      COBIT and CMMI Framework

Knowledge of applicable regulations to the Bank (DFS 500, FFIEC Handbooks, etc.)

Technical skills required

·      Proficiency in Word, Excel and Powerpoint

·      Analytical skills

·      Verbal and written communication skills

·      Ability to deliver under time pressure

·      Accuracy

·      Organization

·      Autonomy

·      Team spirit

·      Fluent in English

·      Accountability and ownership

·      Relationship management

·      Ability to work in multi-disciplinary and multicultural teams

Basic French