Senior Internal Auditor - Information Technology and Security Specialist

At First Community Bank, we are committed to making our community the places where we live and work a better place each day. With a true focus on "community banking," employees find that they can make an impact through company-sponsored programs such as paid volunteer time, matching gifts for charitable contributions and team participation in charitable events. Through a comprehensive wellness program, employees and their families challenge themselves to healthier lifestyles and receive the necessary motivation and tools. With over 40 locations in four states, First Community Bank offers competitive benefits and the personal service you would expect from a company that knows your community. We welcome all applicants and look forward to new colleagues joining our community!
The Bank's value-driven Internal Audit Department is seeking to add an Information Technology (IT) audit professional to strengthen the Department's audit program. This IT audit position will interact with executives and officers across multiple business lines and operations and report to the Director of Internal Audit. This position provides unparalleled opportunity to learn about the Company's operations and can lead to career opportunities outside and within the Internal Audit Department. This position is expected to be based in the Bluefield, VA Corporate Center, with occasional travel.
Primary Responsibilities:
Provide Business and IT management with guidance on IT risk management matters, particularly on application and infrastructure security.
Responsible for developing and maintaining the IT components of the Internal Audit Risk Assessment; including identifying areas where business units should consider additional investment and areas internal audit should focus.
Develop a comprehensive IT audit program based on the FFIEC IT Examination Handbook.
Conduct audits or lead audit teams in performance of IT audits and reviews of systems, applications and IT processes. Prepare and report results to executives and the Board. These include;
Perform pre and post- implementation reviews of system implementations or enhancements.
IT security audits (e.g. network, operating system and data center), including evaluating if security vulnerabilities are properly identified and mitigated. Coordinate the scope and performance of these reviews with business units and external security experts.
Evaluate information general computing controls and provide value added feedback. Test compliance with those controls. Coordinate with SOX teams as applicable.
Perform various other reviews of IT management policies and procedures such as change management, business continuity planning/ disaster recovery and information security to ensure that controls surrounding these processes are adequate.
Develop, build & implement tools to analyze data to improve audit efficiency and effectiveness, (including for internal audit risk assessments). Ultimately be a source for analytics that business units adopt to provide business insights or for continuous auditing.
Conduct audits or lead audit teams in operational / financial audits.
Assist in development/enhancement of other technical and non-technical internal audit programs.
Assist with internal audit staff development by leading in-house IT/Information Security training.
Work closely with state and federal banking supervisory agencies in support of their routine examinations of the Bank and its internal audit program.
Qualifications & Skills
Education and Training:
Bachelor's degree in Finance, Accounting, Computer Science, or related discipline
Understanding of multiple technology domains including software development, Windows, database management, networking, information security architecture, and iSeries (preferred).
Understanding of information security standards, best practices for securing computer systems, and applicable laws and regulations.
Managerial, Technical or Professional Experience
Minimum 7+ years of relevant audit experience with a IT background.
Prior position in IT Governance/IT Audit internal audit or external auditing firm.
Progressive achievement in one or more of the traditional IT disciplines (applications, operations, infrastructure, and management).
Experience with IT Operations desirable.
Skills Requirements:
Outstanding interpersonal and communications skills; ability to communicate effectively with technical and non-technical audiences.
Strong knowledge of banking IT systems and legal/regulatory requirements, including FFIEC IT Guidance.
Expert knowledge of internal auditing, internal controls, risk management, and finance and accounting practices and methods.
Comprehensive understanding of internal control environments within the IT function.
Experience with multiple technology domains including aspects of Windows, iSeries and/or database administration, software development and networking.
Excellent leadership and teamwork skills.
Proactive, hands-on, results-driven orientation required.
Excellent professional and technical writing skills.
Ability to maintain exceptional attention to detail within a risk-based audit approach.
Ability to produce high quality work products for the IT department, Senior Management, and the Board of Directors.
Additional Desirable Qualifications:
Master's Degree Finance, Accounting, Computer Science, IT Risk Management/Governance, Business Administration.
Recognized accounting/auditing/information system certifications (e.g. CPA, CISA, CIA,CISSP, CISM, CGEIT, CRISC).
Experience performing model validations and/or developing, troubleshooting, and optimizing various business data models for financial institutions.
Experience with Jack Henry Silverlake Core System
Public Accounting, Banking, and/or Federal or State Bank Examiner Experience.

Don't Be Fooled

The fraudster will send a check to the victim who has accepted a job. The check can be for multiple reasons such as signing bonus, supplies, etc. The victim will be instructed to deposit the check and use the money for any of these reasons and then instructed to send the remaining funds to the fraudster. The check will bounce and the victim is left responsible.

More Jobs

Information Assurance/Security Specialist (Sen...
Quantico, VA Phacil
Information Systems Security Specialist, Senior
Centreville, VA Parsons
Information Assurance/ Security Specialist, Se...
Arlington, VA General Dynamics Information Technology
Customer Services and Information Technology O...
Reston, VA General Dynamics Information Technology
Information Technology Support Specialist 3
Reston, VA Pennsylvania State University