Principal Auditor / Enterprise Technology Audit Group - Information Security Team

Wells Fargo Philadelphia , PA 19107

Posted 3 weeks ago

Job Description:

Important Note: During the application process, ensure your contact information (email and phone number) is up to date and upload your current resume prior to submitting your application for consideration. To participate in some selection activities you will need to respond to an invitation. The invitation can be sent by both email and text message. In order to receive text message invitations, your profile must include a mobile phone number designated as "Personal Cell" or "Cellular" in the contact information of your application.

At Wells Fargo, we want to satisfy our customers' financial needs and help them succeed financially. We're looking for talented people who will put our customers at the center of everything we do. Join our diverse and inclusive team where you'll feel valued and inspired to contribute your unique skills and experience.

Help us build a better Wells Fargo. It all begins with outstanding talent. It all begins with you.

Audit Services conducts audits and reports the results of our work to the Audit & Examinations Committee of the Board of Directors. We provide independent, objective assurance and consulting services delivered through a highly competent and diverse team. As a business partner, Audit Services helps the Company accomplish its objectives by bringing a systematic, disciplined approach to evaluate and improve the effectiveness of risk management, control, and governance processes.

The Enterprise Technology Audit Group is comprised of four teams responsible for Information Security, Infrastructure, IT Governance, and CIO Applications. The Information Security team is looking to fill several Principal Auditor positions to support the coverage of the Technology, but not limited to Cloud Computing, Configuration Management, Cryptography, Cyber Defense, Network, Patch, and Vulnerability Management.

Key job responsibilities for this position include the following:

  • With the assistance of an engagement supervisor, lead execution of technology-focused audits by identifying and assessing risks in business context related to the technologies and IT management processes and by developing audit tests designed to achieve audit objectives

  • Develops and applies effective project leadership skills pertaining to information security and technology infrastructure audit engagements regarding notification, task assignment and monitoring, project pacing and control.

  • Leads audits that are generally small to moderate in size and complexity to ensure resources are assigned and executed according to budgets and schedules.

  • Engaged in multiple audits concurrently, with a leadership role in at least one audit.

  • Exercises superior judgment when evaluating the business impact and significance of audit findings, identifying mitigating controls and other factors and assessing whether residual risks are consistent with risk tolerance and prudent risk management

  • Demonstrates professional skepticism.

  • Presents audit results in an objective and unbiased manner.

  • Develops valuable and trusting relationships with internal business partners by executing efficient audit work and offering suggestions to enhance risk management based on an enterprise-wide view of technology risk management

  • Escalates significant risks and loss exposures to the appropriate levels of management.

Only locations listed will be considered. 1525 W WT Harris Blvd, 1st floor, Charlotte NC 28262, 301 S College St, 6th floor, Charlotte NC 28202, 1700 Lincoln St, 9th floor, Denver CO 90203, 608 2nd Ave S., 5th floor, Minneapolis MN 55402, 90 S. 7th St, 12th floor, Minneapolis MN 55402, 100 W. Washington St, 12th floor, Phoenix AZ 85003, 4101 Wiseman Blvd, Bldg 102, 1st floor, San Antonio TX 78251, 1 N. Jefferson Ave, 3rd floor, Saint Louis MO 63103

Required Qualifications

  • 5+ years of experience in one or a combination of the following audit or risk functions: covering risk identification, mitigation and management (includes audit, legal, operational risk, compliance risk, credit risk, market risk, technology risk, or the management of a process or business with accountability for risk.)

Desired Qualifications

  • Experience at a financial institution or accounting firm

  • A BS/BA degree or higher

  • Solid knowledge and understanding of audit or risk methodologies and supporting tools

  • Certification in one or more of the following: CPA, CAMS, CRCM, CIA, CISA or Commissioned Bank Examiner designation

  • Knowledge and understanding of Information Technology audit and risk management

  • Ability to work effectively, as well as independently, in a team environment

  • Strong analytical skills and ability to solve complex technical problems

Other Desired Qualifications

  • IT Audit experience at a large financial institution or accounting firm.

  • Experience within one of the following areas: Information security, IT governance, risk management or application security.

  • Knowledge of information security management frameworks (e.g. COBIT, ISO 2700x, ITIL, NIST Cybersecurity Framework, SANS Top 20 Critical Security Controls).

  • Experience leading/supervising and mentoring audit support staff

  • Experience with Cloud Computing, Configuration Management, Cryptography, Cyber Defense, Network, Patch, and Vulnerability Management.

Job Expectations

  • Ability to travel up to 20% of the time

Disclaimer

All offers for employment with Wells Fargo are contingent upon the candidate having successfully completed a criminal background check. Wells Fargo will consider qualified candidates with criminal histories in a manner consistent with the requirements of applicable local, state and Federal law, including Section 19 of the Federal Deposit Insurance Act.

Relevant military experience is considered for veterans and transitioning service men and women.

Wells Fargo is an Affirmative Action and Equal Opportunity Employer, Minority/Female/Disabled/Veteran/Gender Identity/Sexual Orientation.


icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Senior Audit Manager / Enterprise Technology Audit Group Infrastructure

Wells Fargo

Posted 4 days ago

VIEW JOBS 12/6/2019 12:00:00 AM 2020-03-05T00:00 Job Description Important Note: During the application process, ensure your contact information (email and phone number) is up to date and upload your current resume prior to submitting your application for consideration. To participate in some selection activities you will need to respond to an invitation. The invitation can be sent by both email and text message. In order to receive text message invitations, your profile must include a mobile phone number designated as "Personal Cell" or "Cellular" in the contact information of your application. At Wells Fargo, we want to satisfy our customers' financial needs and help them succeed financially. We're looking for talented people who will put our customers at the center of everything we do. Join our diverse and inclusive team where you'll feel valued and inspired to contribute your unique skills and experience. Help us build a better Wells Fargo. It all begins with outstanding talent. It all begins with you. Audit Services conducts audits and reports the results of our work to the Audit & Examinations Committee of the Board of Directors. We provide independent, objective assurance and consulting services delivered through a highly competent and diverse team. As a business partner, Audit Services helps the Company accomplish its objectives by bringing a systematic, disciplined approach to evaluate and improve the effectiveness of risk management, control, and governance processes. WFAS Enterprise Technology Audit Group (ETAG) is looking for a Senior Audit Manager that will manage a team of 10 to 12 professional IT auditors and technical SMEs in the execution of audit activities, across Wells Fargo's technology and security infrastructure. Candidates must demonstrate in-depth subject matter expertise in a number of technical focus areas. Responsibilities include creating/managing the technology infrastructure audit coverage strategy, including strategy design, audit execution, and coordination with other audit teams on key infrastructure related controls that are tested within a variety of different audit projects. Responsibilities also include maintaining effective relationships with senior management; overseeing audit projects; supervising and coaching audit managers, subject matter experts, and audit staff; providing for staff development through mentoring, training, and reviewing audit work; leading special projects; analyzing emerging issues; escalating risks and recommending controls to stakeholders; editing audit reports; and assisting with Audit Committee reporting. Strategy/Technical: The Senior Audit Manager is responsible for establishing the overall strategy for auditing assigned areas of responsibility as well as identifying and evaluating emerging areas of Infrastructure and Technology Risk. Responsibilities also include the completion of a periodic risk assessment and the creation and completion of an annual audit coverage plan. The Senior Audit Manager is responsible for providing and supporting the audit and reporting needs of the Audit Director, Executive Audit Director and Chief Auditor in all matters related to significant technology infrastructure issues. A critical component of this role is the ability to design audit coverage strategies and communicate technically complex internal control issues and business risk in a clear non-technical manner. Relationships/Communication/Leadership: The Senior Audit Manager is responsible for the creation and maintenance of effective relationships with the senior executives throughout the bank, and with regulators and external auditors. The Senior Audit Manager is expected to provide leadership to the team and audit department, and to promote the goals and the culture of Wells Fargo including the recognition of individual performance and contributions. Staff Development: The Senior Audit Manager is responsible for developing, coaching, and mentoring audit managers and staff. In addition, the development and maintenance of effective staff skills, competencies and behaviors necessary to perform high quality audit work in a very large scale and technically complex environment are integral components of the role. The attention to staff development and promulgation of Wells Fargo's core values including the commitment to creating and maintaining a diverse and inclusive work environment are important performance factors. As a Team Member Manager, you are expected to achieve success by leading yourself, your team, and the business. Specifically you will: * Lead your team with integrity and create an environment where your team members feel included, valued, and supported to do work that energizes them. * Accomplish management responsibilities which include sourcing and hiring talented team members, providing ongoing coaching and feedback, recognizing and developing team members, identifying and managing risks, and completing daily management tasks. Required Qualifications * 8+ years of experience in one or a combination of the following audit or risk functions: leading teams covering risk identification, mitigation and management (includes audit, legal, operational risk, compliance risk, credit risk, market risk, technology risk, or the management of a process or business with accountability for risk.) * 2+ years of management experience Desired Qualifications * Experience at a financial institution or accounting firm * A BS/BA degree or higher * Leadership experience * Solid knowledge and understanding of audit or risk methodologies and supporting tools * Strong understanding of financial regulatory environment * Certification in one or more of the following: CPA, CAMS, CRCM, CIA, CISA or Commissioned Bank Examiner designation * Excellent verbal, written, and interpersonal communication skills Other Desired Qualifications * In depth knowledge of industry frameworks for managing technology / information security and related risk (e.g., NIST, SANS, ISO 27001, COBIT) * In depth knowledge of some of the following technical areas of focus or concepts: * Technology Recovery & Resiliency; Business Continuity or Third Party Technology * Distributed server platform management (Windows, UNIX Operating Systems) * Mainframe platform management (z/OS) * Midrange platform management (iSeries) * Database management (Oracle, DB2, SQL etc) * Middleware management (Apache, WebLogic etc) * Data center management, including physical security and environmental controls * Change, problem and incident management * Vulnerability, patch, system lifecycle and configuration management * IT governance * IT Asset Management * Network and Perimeter - Knowledge of Microsoft Windows Active Directory, LDAP, Internet and network security technologies such as: TCP/IP, firewalls, routers, switches, IDS/IPS, Anti-Virus, SIEM, Web Proxy, VPN, Encryption technologies, products, etc. * Secure coding - experience looking for security vulnerabilities such as Cross Site Scripting, SQL Injection, Cookie Manipulation, Buffer Overflows, etc. Familiarity with server, network, database, and application security hardening. * Experience assessing system availability, functionality and information security risks * Technical experience in technology management, engineering, or consulting * Familiarity with server, network, database, and application security hardening * Proven project management skills, ability to effectively lead project teams, develop and communicate recommendations and provide effective performance feedback to managers and team members * Mature planning, organizing, and directing skills to include relationship and teaming ability through excellent listening and communication skills * Self-awareness, conflict resolution skill, individual accountability, and passion for learning are also critical * Ideal candidate possesses a great degree of natural curiosity and professional skepticism * Excellent analytical and oral and written communication skills are a must as well as a strong track record of influencing senior management and leading change on both strategic and tactical initiatives. Job Expectations * Ability to travel up to 20% of the time Street Address CO-Denver: 1700 Lincoln St - Denver, CO AZ-PHX-Central Phoenix: 100 W Washington St - Phoenix, AZ IA-West Des Moines: 800 S Jordan Creek Pkwy - West Des Moines, IA MN-Minneapolis: 600 S 4th St - Minneapolis, MN CA-SF-Financial District: 420 Montgomery - San Francisco, CA PA-Philadelphia: 1 S Broad St - Philadelphia, PA NC-Charlotte: 1525 W Wt Harris Blvd - Charlotte, NC NC-Charlotte: 301 S College St - Charlotte, NC TX-San Antonio: 4101 Wiseman Blvd - San Antonio, TX MO-Saint Louis: 2801 Market St - Saint Louis, MO Disclaimer All offers for employment with Wells Fargo are contingent upon the candidate having successfully completed a criminal background check. Wells Fargo will consider qualified candidates with criminal histories in a manner consistent with the requirements of applicable local, state and Federal law, including Section 19 of the Federal Deposit Insurance Act. Relevant military experience is considered for veterans and transitioning service men and women. Wells Fargo is an Affirmative Action and Equal Opportunity Employer, Minority/Female/Disabled/Veteran/Gender Identity/Sexual Orientation. Wells Fargo Philadelphia PA

Principal Auditor / Enterprise Technology Audit Group - Information Security Team

Wells Fargo