Citi’s Internal Audit – Technology Audit Team is part of a global organization covering Citi's businesses and service to clients and customers in over 180 countries. This talented team provides independent assurance that a sound control framework and environment is in place to appropriately manage risks in Citi's complex technology environment. Internal Audit is a change agent within Citi to enhance the control culture of Citigroup worldwide and thereby, support senior management decision making around the globe.
Our key priorities are to:
- Identify current and evolving technology risks and test the effectiveness and efficiency of controls in place to mitigate those risks.
- Ensure timely delivery of high-quality comprehensive regulatory and internal audit issue validation.
- Contribute to the delivery of high impact, insightful reporting of technology trends and themes to executive management, regulators, and audit committees.
- Collaborate across businesses and functions to improve the identification, measurement, management, reporting, and controls in governance, risk management, and internal control environments.
The Technology audit area is responsible for auditing core IT processes (such as, application functionality testing, application development, change management, information security, computer operations, vendor management and business continuity), and related risks and controls within Citi technology. In addition to integrated audits, the auditor’s primary focus will be Audit entities within Citi’s Technology organizations. Experience with cyber/information security risk, infrastructure security controls testing, and cyber governance with either line of defense is highly recommended.
The Senior Auditor is an intermediate level role responsible for performing moderately complex audits and assessments of Citi’s risk and control environments in coordination with the Audit team. The overall objective is to apply in-depth disciplinary knowledge through value-added perspectives or advisory service to help Citi reach business goals.
Key Responsibilities:
- Complete assigned audits within budgeted timeframes, and budgeted costs
- Monitor, assess, and recommend solutions to emerging risks
- Contribute to the development of audit process improvements, including the development of automated routines to help focus audit testing
- Draft audit reports, and present issues to the business while discussing practical cross-functional solutions
- Recommend appropriate and pragmatic solutions to risk and control issues
- Apply understanding of internal audit standards, policies, and local regulations to provide timely audit assurance
- Develop internal audit staff, and provide coaching to team members
- Appropriately assess risk when business decisions are made, demonstrating particular consideration for the firm's reputation and safeguarding Citigroup, its clients and assets, by driving compliance with applicable laws, rules and regulations, adhering to Policy, applying sound ethical judgment regarding personal behavior, conduct and business practices, and escalating, managing and reporting control issues with transparency, as well as effectively supervise the activity of others and create accountability with those who fail to maintain these standards.
Qualifications:
- 5-8 years of relevant experience in Cyber or Information Security Risk or Audit Roles.
- Professional Certification preferred (CISA, CISSP, CIA, CPA, etc.)
- Experience working with Excel, array formulas and integrating with external data sources
- Experience with data in Access and integrating with external data sources and Excel tools
- Effective verbal, written, and negotiation skills
- Effective project management skills
- Effective influencing and relationship management skills
- Experience in data quality and governance analysis
- Strong data analytics skills
- Demonstrated ability to remain unbiased in a diverse working environment
Education:
- Bachelor’s degree/University degree or equivalent experience
This job description provides a high-level review of the types of work performed. Other job-related duties may be assigned as required.
#NAMInternalAudit
------------------------------------------------------
Job Family Group:
Internal Audit
------------------------------------------------------
Job Family:
Audit
------------------------------------------------------
Time Type:
Full time
------------------------------------------------------
Citi is an equal opportunity and affirmative action employer.
Qualified applicants will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.
Citigroup Inc. and its subsidiaries ("Citi”) invite all qualified interested applicants to apply for career opportunities. If you are a person with a disability and need a reasonable accommodation to use our search tools and/or apply for a career opportunity review Accessibility at Citi.
View the "EEO is the Law" poster. View the EEO is the Law Supplement.
View the EEO Policy Statement.
View the Pay Transparency Posting
