As long as there are people who make the world a better place, we’ll keep making a difference for them. Since 1918, it has been TIAA’s mission to serve those who serve others. It is this mission and the values we embrace that make us a different kind of financial services organization.
When you work here at TIAA, you’re not just in it for yourself. You are part of something bigger. A collective mission to make a difference – a collective mission we make our own.
To be difference makers.
For more information about TIAA, visit our website.
The Internal Audit Division is an independent internal function within TIAA, which is responsible for performing risk based audit and advisory services across all legal entities, businesses, and support areas of TIAA. Internal Audit reports functionally to the TIAA Audit Committee of the Board of Trustees and administratively to the CEO. Internal Audit is comprised of highly skilled professionals with experience in risk management, operations, accounting, and technology. The Internal Audit Division mission is to provide objective, independent audit, advisory and investigative services to our customers and the Audit Committees that add value and contribute to the success of the company.
TIAA is looking for an experienced IT auditor with 2+ years of IT Audit experience. This position serves as a team member on complex IT audits, working under the direction of audit management and more senior IT auditors. As an IT Auditor, you will be involved in activities such as the preparation of detailed programs for IT audits, security reviews, integrated audits, and data analytics procedures to determine efficiency, effectiveness and alignment with internal policies, procedures, regulations and industry standards using the organization’s risk based internal auditing methodology. Responsibilities include, but are not limited to: Supporting audit management in defining the scope of audits, identifying key risk areas, and reviewing relevant controls across the organization in support of the annual risk-based audit plan; Ensuring effective program management disciplines are in practice, providing independent validation of program health to senior leadership, driving effective risk management, ensuring reporting transparency and providing subject matter expertise to validate testing quality leading to successful delivery of audit engagements.
KEY RESPONSIBILITIES AND DUTIES:
- Conduct highly confidential and/or complex technology, operational and integrated audits using the organization’s risk-based internal auditing methodology under the general direction of audit leadership and management.
- Produce a high quality end-product that clearly documents the audit results, including comments on the adequacy and effectiveness of the controls and processes being audited.
- Demonstrate good judgment in evaluating the results of audits and in developing and presenting remediation solutions where control weaknesses and root cause have been identified.
- Assess risks and internal controls by identifying areas of non-compliance, evaluating manual and automated processes, identifying process weaknesses and inefficiencies.
- Work collaboratively and independently on unique or special assignments which may require specialized knowledge and/or experience.
- Participate in discussions with senior management when communicating audit results and recommendations.
- Contribute to decisions and projects that have a moderate to high impact to the organization.
- Comply with Company, Division and Professional ethical standards.
Minimum of 2 years of information systems auditing or other relevant experience; preference in public accounting and/or diversified financial services
Bachelor’s degree in Information Systems, Information Technology, Computer Science, Accounting or other related discipline required.
Working knowledge of various IT environments (e.g., distributed, cloud-based and network platforms), cybersecurity, data platforms and analysis (databases, data warehouses, and experience in data analysis), IT control frameworks, and risk based internal audit frameworks.
A Certified Information Systems Auditor (CISA) or similar professional certification (e.g., CPA, CIA) is strongly preferred. CISSP certification is a plus. The candidate will be requested to obtain the CISA within a reasonable timeframe, based on prior experience.
- Knowledge of the Institute of Internal Auditor’s (IIA) International Professional Practices Framework (IPPF) to which the Internal Audit Division’s methodology is aligned.
- Proficient knowledge of financial services products, services and regulations; and regulatory guidance and expectations (FRBB, OCC, SEC, State Insurance)
Proven track record of building solid relationships with clients, including demonstrated abilities to approach clients in an organized and knowledgeable manner and to deliver clear requests for information.
Demonstrated time management and project management skills.
NOTE: The incumbent of this position will be designated as a ‘Tier 1 Access Person’ for personal trading purposes. Such a designation imposes restrictions on securities holdings and trading activities of the incumbent, and of certain family members, which should be fully understood before any offer of employment for this position is accepted.
Equal Employment Opportunity is not just the law, it’s our commitment. Read more about the Equal Employment Opportunity Law.
If you need assistance applying due to being visually or hearing impaired, please email Careers Help.
This organization is an equal employment opportunity (EEO) employer, dedicated to maintaining a work environment free of bias, harassment, discrimination and retaliation. As an EEO employer, this organization expressly prohibits discrimination, harassment, and retaliation on the basis of race, creed, ethnicity, color, age, religion, sex, sex stereotype, pregnancy (including childbirth, breastfeeding or related medical conditions where applicable), sexual orientation, gender, gender identity, gender expression, transgender, marital status, national origin, ancestry, physical or mental disability, requesting a reasonable accommodation based on mental or physical disability, medical condition (as defined by applicable law), genetic history and information, citizenship status, military or veteran status, or any other status protected by federal, state, or local law or ordinance or regulation (collectively referred to here as ‘protected characteristics’).
*©2016 Teachers Insurance and Annuity Association of America (TIAA), 730 Third Avenue, New York, NY 10017