U.S. Bank Audit Project Manager - Information Security Services in Denver, Colorado
At U.S. Bank, we're passionate about helping customers and the communities where we live and work. The fifth-largest bank in the United States, we’re one of the country's most respected, innovative and successful financial institutions. U.S. Bank is an equal opportunity employer committed to creating a diverse workforce. We consider all qualified applicants without regard to race, religion, color, sex, national origin, age, sexual orientation, gender identity, disability or veteran status, among other factors.
The Corporate Audit Services Audit Project Manager - Information Security Services is primarily responsible for supervising staff in the completion of audit engagements with minimal supervision from managers, however there are no direct reports. The Audit Project Manager- Information Security Services is expected to monitor progress of audit engagements against plan and schedule, assess work performed by the audit engagement team, and provide coaching and on-the-job training for team members to ensure engagements are completed in conformance with internal audit policies and procedures.
Supervising audit staff in the completion of audit engagements, ensuring the highest quality work delivered timely. Supervision includes:
Assessing work performed by staff by providing coaching notes that are relevant to the scope, accuracy and completeness of work performed.
Performing sufficient reviews to ensure work contains relevant facts to support audit scope and conclusions and adhere to internal audit policies and procedures.
Reviewing issues to ensure potential exposures and significance are included, root causes are identified, and operationally effective and cost-effective actions to address those causes are developed into appropriate recommendations.
Completing or assisting managers in planning audit engagements. Includes identifying and analyzing business processes, key risks and critical controls; interviewing auditees; determining audit scope; evaluating control design adequacy; and developing audit programs which provide sufficient guidance for testing control performance effectiveness and making evaluations which effectively achieve audit objectives.
Assisting the managers in reporting and wrap-up phases of audits. Includes appropriate disposition of issues and drafting audit reports which include issues.
Monitoring progress of audit engagements against plan and schedule. Includes making necessary adjustments and promptly completing work paper reviews on a timely basis to ensure all issues are identified and dispositioned prior to report draft issuance.
Providing on-the-job training for staff. Includes business knowledge of products, services, and delivery systems; company policies and procedures; applicable laws and regulations; and formal/informal control frameworks.
Collaborating across the three lines of defense regarding information technology and business processes, risks, and controls. Coordinating audit activities by integrating other internal audit subject matter teams (Information Technology, Anti-Money Laundering, Compliance, Risk Management, Treasury, etc.) to ensure appropriate and efficient coverage of the business products, services and processes. Managing the team’s workload to assist other audit teams when resources are needed for areas of higher risk.
Performing other duties as requested by management.
Bachelor's degree, or equivalent work experience
10 or more years of applicable experience
Considerable knowledge of applicable laws, regulations, financial services, and regulatory trends that impact their assigned line of business
Relevant Financial Service Industry and Information Security knowledge (Threat Hunting and Intelligence, Data Loss Prevention, Identity Management, Vulnerability Management, Application Security, etc.) knowledge.
Knowledge of the NIST Cybersecurity Framework.
Thorough understanding of Institute of Internal Auditors (IIA) Standards and the common definition of internal controls.
CISA, CISSP, CIA, CPA or other relevant professional designation or advanced degree.
Experience in leading complex information security/cybersecurity audits
Bachelor’s degree in information systems/technology or a related field (preferably in Management Information Systems [MIS] ).
Considerable understanding of the business line's operations, products/services, systems, and associated risks/controls
Considerable knowledge of Risk/Compliance/Audit competencies
Strong process facilitation, project management, and analytical skills
Must possess business acumen and credibility to help business line(s) proactively identify and address changing workforce needs
Excellent presentation, interpersonal, written and verbal communication skills
Proficient computer navigation skills using a variety of software packages, including Microsoft Office applications and word processing, spreadsheets, databases, and presentations
Applicable professional certifications preferred
If there’s anything we can do to accommodate a disability during any portion of the application or hiring process, please refer to our disability accommodations for applicants (https://www.usbank.com/careers/disability-accommodation-for-applicants.html) .
Take care of yourself and your family with U.S. Bank employee benefits. We know that healthy employees are happy employees, and we believe that work/life balance should be easy to achieve. That's why we share the cost of benefits and offer a variety of programs, resources and support you need to bring your full self to work and stay present and committed to the people who matter most - your family.
Learn all about U.S. Bank employee benefits, including tuition reimbursement, retirement plans and more, by visiting usbank.com/careers (https://www.usbank.com/careers/index.html) .
EEO is the Law
Applicants can learn more about the company’s status as an equal opportunity employer by viewing the federal EEO is the Law (https://www.dol.gov/sites/dolgov/files/ofccp/regs/compliance/posters/pdf/eeopost.pdf) poster.
U.S. Bank participates in the U.S. Department of Homeland Security E-Verify program in all facilities located in the United States and certain U.S. territories. The E-Verify program is an Internet-based employment eligibility verification system operated by the U.S. Citizenship and Immigration Services. Learn more about the E-Verify program (https://www.usbank.com/careers/verification-of-eligibility-for-employment.html) .
Salary range reflected is an estimate of base pay and is for the primary location. Base pay range may vary if an offer is made for work in a different location. Pay Range: $108,545.00 - $127,700.00 - $140,470.00
Due to legal requirements, U.S. Bank requires that the successful candidate hired for some positions be fully-vaccinated for COVID-19, absent being granted an accommodation due to a medical condition, pregnancy, or sincerely held religious belief or other legally required exemption. For these positions, as part of the conditional offer of employment, the successful candidate will be asked to provide proof of vaccination or approval for an accommodation or exemption upon hire.
U.S. Bank is an equal opportunity employer committed to creating a diverse workforce. We consider all qualified applicants without regard to race, religion, color, sex, national origin, age, sexual orientation, gender identity, disability or veteran status, among other factors.