General information
Entity
About Crédit Agricole Corporate and Investment Bank (Crédit Agricole CIB)
Crédit Agricole CIB is the corporate and investment banking arm of Crédit Agricole Group, the 10th largest banking group worldwide in terms of balance sheet size (The Banker, July 2022).
8,600 employees in more than 30 countries across Europe, the Americas, Asia-Pacific, the Middle-East and North Africa, support the Bank's clients, meeting their financial needs throughout the world.
Crédit Agricole CIB offers its large corporate and institutional clients a range of products and services in capital market activities, investment banking, structured finance, commercial banking and international trade.
The Bank is a pioneer in the area of climate finance, and is currently a market leader in this segment with a complete offer for all its clients.
For more information, please visit www.ca-cib.com
Twitter: https://twitter.com/ca_cib
LinkedIn: https://www.linkedin.com/company/credit-agricole-cib/
Reference
2022-69093
Update date
15/09/2023
Job description
Business type
Types of Jobs - General Inspection / Audit
Job title
Senior Auditor - IT
Contract type
Permanent Contract
Job summary
Key Responsibilities:
The Senior Auditor may either work independently or supervise one or several auditors.
I – Conduct of assignment
When working independently, the Senior Auditor is responsible for carrying out audit work autonomously as per the audit planning within the defined timeframes in accordance with IGE methodology and procedures and Internal Audit standards. This includes:
-To independently carry out audit planning and fieldwork, including:
-A preliminary assessment of the audited activity highlighting the related risks and controls
-Interviews, testing and analysis of the results of the controls planned in the audit program
-Assessing controls for compliance with regulations, regulatory guidance including but not limited to Federal Financial Institutions Examination Council (FFIEC) IT Examination Booklets, NY Department of Financial Services (DFS) 500, DFS 504, Gramm–Leach–Bliley Act (GLBA), National Institute of Standards and Technology (NIST), Control Objectives for Information and Related Technology (COBIT) etc.
-Assessing processes and controls within core IT infrastructure, IT operations, cybersecurity, business continuity planning and IT disaster recovery, business applications, data governance and management.
-Assessing control design, effectiveness and sustainability
-To document clearly and precisely in test sheets the controls performed and the conclusions reached
-To communicate succinctly and precisely in verbal and written communications
-To identify and report on strengths and weaknesses of the audited areas, to analyse the root causes and consequences of the identified weaknesses, to formalise possible remediation and recommendations to address the findings and to conclude on the effectiveness and efficiency of the control set-up and business practices
-To present audit conclusions to IGE management and to the management of the audited unit (debriefing presentation, final audit report, etc.)
-To keep his/her management informed of the progress on the audit work assigned, and to escalate any issue that may impact or delay the audit’s execution or to raise any other relevant information on the assigned audit and the risk and control environment
-To proactively conduct recommendations follow-ups to monitor whether adequate corrective actions have been taken prior to closing any recommendations
-To ensure proper archiving of any supporting documentation, audit evidence and deliverables.
-To demonstrate accountability and ownership for the work assigned
II – Team management
The Senior Auditor, when supervising one or several Auditors, is responsible for:
-Training the Auditors on the audit techniques and expected deliverables
-Reviewing the work performed by the auditor to ensure that the test results and the findings are adequately documented and the recommendations are relevant
Position location
Geographical area
America, United States Of America
City
NEW YORK
Candidate criteria
Minimal education level
Bachelor Degree / BSc Degree or equivalent
Academic qualification / Speciality
Essential
Bachelor or Masters’ degree in accounting, business, finance, engineering or related field
3-5 year experience in audit (internal / external) or banking organization or IT
Desirable
Industry recognized certification (CPA, CIA, CISA, CISSP, ACAMS)
Audit experience in one or more of the following fields,
- Core IT infrastructure
- IT operations
- IT governance
- Business Applications
- Cybersecurity
- Business continuity planning and IT disaster recovery
- Data governance and management
Level of minimal experience
3-5 years
Experience
-Providing regular feedbacks to the Auditor and contributing to the definition of objectives and to the end of assignment assessment related to the team allocated during assignment
-Ensuring collaborative and productive relationships within the team and good coordination throughout the International Network and with auditees
III – IGE Continuous Improvement Program / Transversal topics
The Senior Auditor contributes to the continuous improvement of IGE methodologies and processes. As part of her/his responsibilities, she/he:
-Prepares or updates audit guides, scorecards or training materials related to specific activities based on existing knowledge, documentation, interviews, etc.
-Monitors the implementation of recommendations issued
-Builds and shares knowledge (e.g. through contributing to SynerGIA, delivering training or taking part in various Methods and Support workstreams or assignments)
-Participate in one or several knowledge communities within IGE
The Senior Auditor is regularly trained on banking and regulatory matters and must always maintain a sufficient knowledge of the audited area she/he is responsible for. She/he must complete all the mandatory trainings within the defined timelines.
Management and Reporting
Direct reporting line to the head of IT internal auditor
During an assignment the Senior Auditor reports to the Lead Auditor in charge of the assignment or to another Senior Auditor depending on the organisation of the assignment
Required skills
Key Internal contacts
Auditees, other control functions
Key External contacts
N/A
Role specific requirements
This role may require business travels in any relevant locations to conduct the assigned audits, for periods up to several consecutive weeks.
Auditors must comply with the CACIB Audit Charter, in particular the five fundamental ethical principles (integrity, objectivity, confidentiality, expertise, and transparency) and all other locally applicable regulations.
Technical skills required
Essential
·Proficiency in Word, Excel and Powerpoint
·Analytical skills
·Verbal and written communication skills
·Ability to deliver under time pressure
·Accuracy
·Organization
·Autonomy
·Team spirit
·Fluent in English
·Accountability and ownership
·Auditing techniques
·Understanding of the risks generated by banking / securities activities
·Specific skills/knowledge on IT and IT risks
·Ability to perform basic coding in Python, Java or Javascript.
·Ability to perform data analytics using spreadsheets, databases, Python, PowerBI
·Familiarity with commonly used tools such as ServiceNow, vulnerability scanners and penetration testing tools etc
Desirable
·Relationship management
·Ability to work in multi-disciplinary and multicultural teams
·Basic French
·Any specific skills knowledge in using core IT systems of the Bank (understanding of the data production, analysis of the results)
·Previous experience in a bank
Salary Range: $115,000 - $135,000