Sr. IT Auditor

Fannie Mae Corp Washington , DC 20319

Posted 2 weeks ago

THE COMPANY

Fannie Mae provides reliable, large-scale access to affordable mortgage credit in communities across our nation. We are the leading source of funding for housing in America, which means more people can buy or rent a home. We are focused on sustaining the housing recovery, improving our company, and leading change to make housing better.

Join our diverse, high-performing team and make a difference as we work together to enable access to a good home.

For more information about Fannie Mae, visit http://www.fanniemae.com/progress

JOB INFORMATION

The Senior IT Auditor assists with planning, executing and reporting audits of complex functionalities and output of various information technology systems, applications or platforms/operating systems, financial and statistical models, or risk management activities for compliance with corporate policies and procedures. Fully demonstrate generalized knowledge of the mortgage industry and Fannie Mae's business operations. Demonstrate developing specialized knowledge of the mortgage industry and Fannie Mae's business operations as it relates to models, risk management, or technology systems.

KEY JOB FUNCTIONS

  • Apply specialized technical knowledge and expertise to perform reviews relating to the full life cycle of models, information technology applications, or risk management/analysis used across the company.

  • Successfully perform all key job functions of the Staff IT Auditor role at a higher level of complexity, scope and autonomy. Coordinate and lead audit team meetings to discuss the audit plan, including audit background, preliminary objectives/scope (identified during the Annual Audit Planning process), audit budget, audit execution schedule, affected departments, contacts and expectations. Take ownership and independently manage subsets of audits with minimal oversight from IT Audit Management.

  • Conduct first-level review of Staff IT Auditor's work and documentation; leverage Internal Audit Management guidance as needed. Review audit documentation; begin to determine risks and the potential impact of risks on the organization. Perform root cause analysis on exceptions identified during audits. Validate and document Risk Control Matrix; write test procedures based on Risk Control Matrix. Draft audit reports; revise and finalize with Audit Management.

  • Write audit issues, discuss with audit management and validate issues with customers; assist with additional report writing as needed. Assist with tracking results of prior audits, identifying audit themes across organizations and determining if appropriate corrective action has been taken regarding significant audit concerns. Contribute to strengthening and improving the governance, risk and control environment of the organization; share issues, ideas and recommendations with the Internal Audit Management and other Internal Audit teams.

  • Provide informal, day-to-day coaching and guidance to Staff Auditors. Share knowledge of specialty areas to build knowledge and capabilities across Internal Audit. Build and maintain relationships with business partners at the manager and staff levels. Provide advice and share Internal Audit knowledge with business partner managers and staff to strengthen governance, risk and control environments, as appropriate.

EDUCATION

  • Bachelor's Degree or equivalent required

MINIMUM EXPERIENCE

  • 3 years of related experience

SPECIALIZED KNOWLEDGE & SKILLS

  • Minimum 5 years of experience in IT audit, consulting, or risk management

  • At least one of the certifications is required: CISA, CIA, CISSP, CPA

  • Working knowledge of technology infrastructure is required, e.g. Network, Operating Systems (Unix, Windows), Databases, Middleware, Web Applications

  • General understanding of information security practice, industry frameworks, and regulatory requirements related to Cybersecurity and/or Cloud implementation

  • Experience with DevOps and Continuous Integration/Continuous Delivery

  • Experience working within Agile methodologies

  • Critical thinking and data analytic skills

  • Excellent verbal and written communication skills

EMPLOYMENT

As a condition of employment with Fannie Mae, any successful job applicant will be required to successfully complete a background investigation.

Fannie Mae is an Equal Opportunity Employer.


icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Sr IT Auditor

Proenlist

Posted 4 days ago

VIEW JOBS 3/21/2019 1:07:31 PM 2019-06-19T13:07 <span style="font-size:12px;"><span style="font-family:tahoma,geneva,sans-serif;"><strong>Position Overview: </strong><br /> The Auditor - Specialty III assists with planning, executing and reporting audits of complex functionalities and output of various information technology systems, applications or platforms/operating systems, financial and statistical models, or risk management activities for compliance with corporate policies and procedures. Fully demonstrate generalized knowledge of the mortgage industry and Fannie Mae's business operations. Demonstrate developing specialized knowledge of the mortgage industry and Fannie Mae's business operations as it relates to models, risk management, or technology systems.<br /> <br /> <br /> <strong>Responsibilities: </strong></span></span> <ul> <li style="padding: 0; margin: 0;" style="padding: 0; margin: 0;"><span style="font-size:12px;"><span style="font-family:tahoma,geneva,sans-serif;">Apply specialized technical knowledge and expertise to perform reviews relating to the full life cycle of models, information technology applications, or risk management/analysis used across the company.</span></span></li> <li style="padding: 0; margin: 0;" style="padding: 0; margin: 0;"><span style="font-size:12px;"><span style="font-family:tahoma,geneva,sans-serif;">Successfully perform all key job functions of the Internal Auditor - Specialty role at a higher level of complexity, scope and autonomy. Coordinate and lead audit team meetings to discuss the audit plan, including audit background, preliminary objectives/scope (identified during the Annual Audit Planning process), audit budget, audit execution schedule, affected departments, contacts and expectations. Take ownership and independently manage subsets of audits with minimal oversight from Audit Manager/Director - Specialty.</span></span></li> <li style="padding: 0; margin: 0;" style="padding: 0; margin: 0;"><span style="font-size:12px;"><span style="font-family:tahoma,geneva,sans-serif;">Conduct first-level review of Internal Auditor - Specialty work and documentation; leverage Internal Audit Manager/Director - Specialty guidance as needed. Review audit documentation; begin to determine risks and the potential impact of risks on the organization. Perform root cause analysis on exceptions identified during audits. Validate and document Risk Control Matrix; write test procedures based on Risk Control Matrix. Draft audit reports; revise and finalize with Audit Manager/Director - Specialty.</span></span></li> <li style="padding: 0; margin: 0;" style="padding: 0; margin: 0;"><span style="font-size:12px;"><span style="font-family:tahoma,geneva,sans-serif;">Write ICIs, discuss with audit management and validate issues with customers; assist with additional report writing as needed. Assist with tracking results of prior audits, identifying audit themes across organizations and determining if appropriate corrective action has been taken regarding significant audit concerns. Contribute to strengthening and improving the governance, risk and control environment of the organization; share issues, ideas and recommendations with the Internal Audit Manager/Director - Specialty and Internal Audit teams.</span></span></li> <li style="padding: 0; margin: 0;" style="padding: 0; margin: 0;"><span style="font-size:12px;"><span style="font-family:tahoma,geneva,sans-serif;">Provide informal, day-to-day coaching and guidance to Internal Auditor - Specialty. Share knowledge of specialty areas to build knowledge and capabilities across Internal Audit. Build and maintain relationships with business partners at the manager and staff levels. Provide advice and share Internal Audit knowledge with business partner managers and staff to strengthen governance, risk and control environments, as appropriate.</span></span></li> </ul> <h5><br /> <span style="font-size:12px;"><span style="font-family:tahoma,geneva,sans-serif;"><strong>Qualifications:</strong></span></span></h5> <span style="font-size:12px;"><span style="font-family:tahoma,geneva,sans-serif;"><strong>EDUCATION</strong></span></span> <ul> <li style="padding: 0; margin: 0;" style="padding: 0; margin: 0;"><span style="font-size:12px;"><span style="font-family:tahoma,geneva,sans-serif;">Bachelor's Degree or equivalent required</span></span></li> </ul> <br /> <span style="font-size:12px;"><span style="font-family:tahoma,geneva,sans-serif;"><strong>CERTIFICATIONS</strong></span></span> <ul> <li style="padding: 0; margin: 0;" style="padding: 0; margin: 0;"><span style="font-size:12px;"><span style="font-family:tahoma,geneva,sans-serif;">CFA, FRM/PRM, CIA, CPA, CFE, CISA, CISM, CISSP</span></span></li> </ul> <br /> <span style="font-size:12px;"><span style="font-family:tahoma,geneva,sans-serif;"><strong>MINIMUM EXPERIENCE</strong></span></span> <ul> <li style="padding: 0; margin: 0;" style="padding: 0; margin: 0;"><span style="font-size:12px;"><span style="font-family:tahoma,geneva,sans-serif;">3+ years of related experience</span></span></li> </ul> <br /> <span style="font-size:12px;"><span style="font-family:tahoma,geneva,sans-serif;"><strong>SPECIALIZED KNOWLEDGE & SKILLS</strong></span></span> <ul> <li style="padding: 0; margin: 0;" style="padding: 0; margin: 0;"><span style="font-size:12px;"><span style="font-family:tahoma,geneva,sans-serif;">Candidate must have significant experience with SOX IT General Controls (ITGC) testing with focus on access management and logging and monitoring.  </span></span></li> <li style="padding: 0; margin: 0;" style="padding: 0; margin: 0;"><span style="font-size:12px;"><span style="font-family:tahoma,geneva,sans-serif;">Required experience with the preparation of SOX issues.  </span></span></li> <li style="padding: 0; margin: 0;" style="padding: 0; margin: 0;"><span style="font-size:12px;"><span style="font-family:tahoma,geneva,sans-serif;">Required experience with review and closure of issue corrective actions.  </span></span></li> <li style="padding: 0; margin: 0;" style="padding: 0; margin: 0;"><span style="font-size:12px;"><span style="font-family:tahoma,geneva,sans-serif;">Experience coordinating the work of other team members.  </span></span></li> <li style="padding: 0; margin: 0;" style="padding: 0; margin: 0;"><span style="font-size:12px;"><span style="font-family:tahoma,geneva,sans-serif;">Experience with Oracle, Sybase, IDMS, Unix, Active Directory, LDAP, and Mainframe (ACF/ACF2).</span></span></li> <li style="padding: 0; margin: 0;" style="padding: 0; margin: 0;"><span style="font-size:12px;"><span style="font-family:tahoma,geneva,sans-serif;">Ability to work well with all levels of management and staff.</span></span></li> <li style="padding: 0; margin: 0;" style="padding: 0; margin: 0;"><span style="font-size:12px;"><span style="font-family:tahoma,geneva,sans-serif;">Strong verbal and written skills</span></span></li> </ul> Proenlist Washington DC

Sr. IT Auditor

Fannie Mae Corp