The Lead Auditor (LA) role includes audit planning and scoping, overseeing audit fieldwork, maintaining close communications with key stakeholders throughout the audit, reviewing the audit team’s workpaper documentation. The LA documents and presents the audit scope, audit program, audit conclusions, debriefing presentation and audit report to management. The LA oversees and performs where needed independent testing and analysis on specific controls in order to meet the audit’s objectives. The LA also contributes to drafting the debriefing presentation and the final report sent to Management. The Lead Auditors may have to directly supervise one or more auditors.

The Lead Auditor is in charge of conducting assignments and managing the team during the assignments. The assignments may be local, regional or global.

I – Conduct of assignment

The Lead Auditor is responsible for planning and execution of the audit assignments across all phases of the audit. This includes:
·       Identify and assess the controls that mitigate the risks of the audited activities (within core IT infrastructure, IT operations, IT governance, cybersecurity, business continuity planning and IT disaster recovery, business applications, data governance and management, vendor management).
·       Plan and oversee activities and resources including review of audit work-papers to ensure the audit is delivered within defined timelines and in accordance with IGE methodology and procedures and Internal Audit standards
·       Identify, document and present audit scope, audit program, audit conclusions including debriefing presentation and audit report to management.
·       Report on audit status to Global Audit Manager / Head of Local Audit/ Regional Supervisor.
·       Identify and assess controls for compliance with regulations, regulatory guidance such as Federal Financial Institutions Examination Council (FFIEC) IT Examination Booklets, NY Department of Financial Services (DFS) 500, DFS 504, Gramm–Leach–Bliley Act (GLBA), National Institute of Standards and Technology (NIST), Control Objectives for Information and Related Technology (COBIT) etc.
·       Proactively conduct recommendations follow-ups to monitor whether adequate corrective actions have been taken prior to closing any recommendations
·       Demonstrate accountability and ownership for the work assigned

II – Management of a team during an assignment

·       Define objectives and perform end of assignment assessment for audit team members engaged in the assignment,
·       Contribute to develop the team’s knowledge and skills
·       Prepare assignment planning and allocate work streams to team members and manage projects/tasks/staff and budget resources efficiently
·       Maintain a collaborative and productive relationship within the team and close coordination throughout the International Network and with auditees

• Bachelor or Masters’ degree in computer science, information systems, accounting, business, finance, engineering or related field
• 7 -10 years’ experience in audit (internal / external) or banking organization or IT / 3 - 5 years’ experience leading and supervising IT audits.

Audit experience in one or more of the following fields:

• Core IT infrastructure
• IT operations
• IT governance 
• Business Applications
• Cybersecurity
• Business continuity planning & IT
• Data governance and management

Job Summary Cont. 

III – IGE Continuous Improvement Program / Transversal topics

The Lead Auditor contributes to the continuous improvement of IGE methodologies and processes. These contributions include,

·       Contribute to the creation or update of audit methodologies and audit processes/guides on specific topics

·       Build and share knowledge (e.g. through contributing to SynerGIA, delivering training or taking part in various Methods and Support workstreams or assignments)

·       Update Auditable Items scorecards in liaison with the relevant Global Audit Manager

·       Share any relevant information with the IGE Knowledge Community leaders and relevant Audit Partners

·       Engage in one or more IGE knowledge communities

·       Manage resources and budget of audit assignment to achieve the objectives of the audit plan

·       Contribute to the preparation of the audit plan, in coordination with the Audit Manager in charge

The Lead Auditor is regularly trained on banking and regulatory matters and must always maintain a sufficient knowledge of the audited area she/he is responsible for. She/he must complete all the mandatory trainings within the defined timelines.

Management and Reporting

Organizationally, the Lead Auditor reports directly to a Regional IT Audit Supervisor.
During an assignment, the Lead Auditor reports to the Global Audit Manager/Regional IT Audit Supervisor or Head of Local Audit in charge of the assignment

Essential:

• Leadership, Project management, time management and organization.
• Ability to prioritize, multi-task and handle competing priorities.
• Analytical skills
• Interpersonal skills, collaborative.
• Verbal and written communication
• Autonomy
• Fluent in English
• Accountability and ownership

Desirable:

• Industry recognized certification (CISA, CISSP, CPA, CIA, ACAMS)

• Relationship management

• Ability to work in multi-disciplinary and multicultural teams

• Basic French

• Any specific skills knowledge in using core IT systems of the Bank (understanding of the data production, analysis of the results)

• Audit assignment management
• Knowledge of FFIEC, DFS IT regulatory requirements and guidance
• Knowledge of auditing techniques
• Understanding of the risks generated by banking / securities activities
• Specific skills/knowledge on IT and IT risks
• Ability to perform basis coding in Python, Java, Javascript.
• Ability to perform data analytics using spreadsheets, databases, Python, PowerBI
• Familiarity with commonly used tools such as ServiceNow, vulnerability scanners and penetration testing tools etc.

Salary Range: $140,000 - $160,000