U.S. Bank Senior Audit Manager - Information Security Services in Pittsburgh, Pennsylvania
At U.S. Bank, we're passionate about helping customers and the communities where we live and work. The fifth-largest bank in the United States, we’re one of the country's most respected, innovative and successful financial institutions. U.S. Bank is an equal opportunity employer committed to creating a diverse workforce. We consider all qualified applicants without regard to race, religion, color, sex, national origin, age, sexual orientation, gender identity, disability or veteran status, among other factors.
The Corporate Audit Services Senior Audit Manager supports internal audit leadership, in providing the Audit Committee and senior management with independent assurance and advisory services designed to evaluate and improve the effectiveness of risk management, control, and governance processes of U.S. Bancorp (USB), affiliates, wholly owned subsidiaries and entities where USB owns a majority (controlling) interest.
The Senior Audit Manager supports the assessment of the Company's risk and control environments within the auditable entities, determine appropriate audit cycles, maintain an effective continuous monitoring program, and make necessary adjustments to the audit plan.
This role will specifically be part of the Information Security Services (ISS) Audit team and will be responsible for auditing Security Architecture and Engineering, Security Operations, Cloud and Application Security, Data Security and Insider Threat Strategy, Cyber Threat Intelligence, Vulnerability and Configuration Management, Identity & Access Management, and European Information Security. ISS protects information that is stored, transmitted, and processed across U.S. Bank computer networks. They also manage access to Bank systems and applications, define security policy, and collaborate with business line leaders across the enterprise to help them make more informed decisions regarding the security of their information.
The Senior Audit Manager will lead a team of audit professionals and is responsible for managing assigned personnel in accordance with U.S. Bank Human Resources policies and internal audit policies and procedures to achieve audit plan completion. The Senior Audit Manager is expected to recruit, hire, and develop assigned staff to ensure audit engagements are completed in conformance with internal audit policies and procedures.
Completing or assisting the Senior Audit Manager and Audit director in developing the risk-based audit plan. Includes identifying auditable entities and assessing risk within the auditable entities; determining appropriate audit cycles and audit strategy; and determining necessary audit resources and estimated expenses associated with completion of a forward looking 12–18-month audit plan. Also includes performing continuous monitoring activities (working closely with senior management and risk management) and adjusting the audit plan when appropriate.
Supervising audit staff in the completion of audit engagements, ensuring the highest quality work delivered timely. Supervision includes:
Planning audit engagements.
Assessing work performed by lead auditors.
Performing sufficient reviews to ensure work contains relevant facts to support audit scope and conclusions and adhere to internal audit policies and procedures.
Drafting audit reports which communicate audit opinions and audit issues in a timely, clear, and concise manner.
Monitoring progress of audit engagements against plan and schedule and making necessary adjustments.
Preparing and reviewing board, committee, and other stakeholder reporting for completeness, consistency with other internal audit materials, and accuracy of the most up-to-date information, not limited to information internal audit is reporting.
Interacting regularly with business line and risk management leaders, regulators, and external subject matter experts.
Collaborating across the three lines of defense regarding business processes, risks, and controls with focus over enterprise risk management (e.g., risk management framework, risk appetite statement, key risk indicators, risk identification assessment, risk policy development, regulatory capital, committee governance). Coordinating audit activities by integrating other internal audit subject matter teams (Information Technology, Anti-Money Laundering, Compliance, Risk Management, Treasury, etc.) to ensure appropriate and efficient coverage of the business products, services, and processes. Managing the team’s workload to assist other audit teams when resources are needed for areas of higher risk.
Managing, motivating, and developing assigned personnel in accordance with U.S. Bank Human Resources policies and internal audit policies and procedures. These duties include active participation in recruiting activities; establishing and managing development plans for assigned personnel; and providing quarterly performance feedback and annual performance evaluations for assigned personnel. Also includes addressing performance problems promptly.
Drive automation and data analytics opportunities within their portfolio.
Performing other duties as requested by management.
Bachelor's degree, or equivalent work experience
Ten or more years of experience in an applicable risk management environment
Industry certifications in the area of information security, project management and technology auditing including, CRISC, CISSP, CCSP, CGEIT, CISA, GIAC GSEC, and/or comparable qualifications
Knowledge of IT application and general controls is required.
Some working knowledge of Cloud, Application Programming Interface, Micro Services, databases, and DevOps is preferred.
Familiarity with several IT Governance frameworks and guidelines
Excellent verbal and written communication skills.
Strong critical thinking and analytical skills.
Ability to manage multiple tasks and deadlines simultaneously.
Proven adaptability to changing priorities.
Thorough understanding and/or ability to analyze and evaluate applicable laws and regulations to execute audits to assess the adequacy of first and second lines of defense compliance risk management practices.
Ability to build and continuously improve working relationships with internal audit peers, business line leaders, and partners (risk and compliance).
Ability to independently address unique and complex conflicts with business line and effectively negotiate as needed.
Thorough understanding of Institute of Internal Auditors (IIA) Standards and the common definition of internal controls.
If there’s anything we can do to accommodate a disability during any portion of the application or hiring process, please refer to our disability accommodations for applicants (https://careers.usbank.com/global/en/disability-accommodations-for-applicants) .
Take care of yourself and your family with U.S. Bank employee benefits. We know that healthy employees are happy employees, and we believe that work/life balance should be easy to achieve. That's why we share the cost of benefits and offer a variety of programs, resources and support you need to bring your full self to work and stay present and committed to the people who matter most - your family.
Learn all about U.S. Bank employee benefits, including tuition reimbursement, retirement plans and more, by visiting careers.usbank.com .
EEO is the Law
Applicants can learn more about the company’s status as an equal opportunity employer by viewing the federal EEO is the Law (https://www.dol.gov/sites/dolgov/files/ofccp/regs/compliance/posters/pdf/eeopost.pdf) poster.
U.S. Bank participates in the U.S. Department of Homeland Security E-Verify program in all facilities located in the United States and certain U.S. territories. The E-Verify program is an Internet-based employment eligibility verification system operated by the U.S. Citizenship and Immigration Services. Learn more about the E-Verify program (https://careers.usbank.com/verification-of-eligibility-for-employment) .
Salary range reflected is an estimate of base pay and is for the primary location. Base pay range may vary if an offer is made for work in a different location. Pay Range: $120,870.00 - $142,200.00 - $156,420.00
Due to legal requirements, U.S. Bank requires that the successful candidate hired for some positions be fully-vaccinated for COVID-19, absent being granted an accommodation due to a medical condition, pregnancy, or sincerely held religious belief or other legally required exemption. For these positions, as part of the conditional offer of employment, the successful candidate will be asked to provide proof of vaccination or approval for an accommodation or exemption upon hire.
U.S. Bank is an equal opportunity employer committed to creating a diverse workforce. We consider all qualified applicants without regard to race, religion, color, sex, national origin, age, sexual orientation, gender identity, disability or veteran status, among other factors.