The Senior Auditor – Infrastructure position involves the execution of risk-focused fieldwork, in accordance with Internal Audit policies, methodologies, and standards in order to identify meaningful issues, risks and other exposures within the Technology Infrastructure environment being audited or reviewed. The candidate should have audit or practical experience with: operating systems, telecommunications, middleware, database management systems, patch management, network architecture, change management, incident and problem management, disaster recovery and resilience, and identity and access management. Willing to develop the necessary skills to managing audit projects and conducting more complex audits. Conducts risk-based audits and makes conclusions on the level of residual risk. Appropriately analyzes control environments and develops effective audit steps to test controls where necessary in line with new methodology. Owns sections of the audit program and brings them to completion. Engages in Continuous Monitoring activities. Uses knowledge of technology best practices (ISACA, ITIL, CoBIT, etc.) and all applicable regulatory requirements on a day-to-day basis. Learns technology strategies, processes, and regulations (both on the job and through relevant training) and is alert to the changing nature of risk. Demonstrates newly acquired knowledge and skills through, for example, thoughtful analysis of technology processes and issue identification, as well as discussions with the project leader and auditees. Viewed as an internal resource capable of creating and maintaining accurate and clear work documents, completing tasks on time, on budget, and accurately, and quickly learning new technologies, processes, and regulations. Has built a foundational understanding of core concepts in data analytics, relevant technology, the regulatory environment, project management and business processes and can integrate these concepts into audit processes. Develops relationships with the Audit Project Leader, other Audit associates, and auditees. Understands the sensitive nature of confidential information and uses it appropriately. Elevates potential audit issues to the audit manager when identified. Demonstrates ability to articulate difficult concepts to others, adapting communication methods/approaches as necessary. Applies solid judgment and analytical skills, contributing to the development of innovative solutions to complex problems. Identifies inconsistencies with the control environment, regulatory requirements and best practices and initiates the development of a structure or solution to address the issue(s). Identifies opportunities for the use of automation and makes recommendations for software support requests. No direct reports. Demonstrates leadership through work guidance and training of less experienced peers and through advice to assigned auditees. Understands how audit teams integrate and contributes to the achievement of team goals. Modifies testing approach based upon local regulations/requirements.
Bachelor's degree or equivalent combination of education and work experience required. Degree in relevant Information Technology specialty such as MIS, DIS, Computer Science, Mathematics preferred. 3-5 years of total work experience preferred. Prior experience in Audit or the relevant specialty area preferred. Additional core skill requirements include understanding of the applied and interpretation of analytics results for Audit, critical thinking and problem solving.
BNY Mellon is an Equal Employment Opportunity/Affirmative Action Employer.
Minorities/Females/Individuals With Disabilities/Protected Veterans.
Primary Location: United States-New York-New York
Internal Jobcode: 85001
Organization: Audit Technology-HR07992
Requisition Number: 1817439