IT Auditor, Vice President
Responsibilities
- Independently leading various types of audit missions (including complex, global, and multi-team/ integrated audits, etc.), overseeing all aspects of the audit process and having full ownership of the audit project deliverables.
- Preparing high quality and impactful audit reports, especially executive summaries that effectively address key issues to be raised to management’s attention.
- Actively participating in department’s continuous monitoring programs - understanding the ongoing changes in internal and external environment related to specific audited activities and evaluating the impact of changes on the company.
- Participating in various stages of the annual risk assessment and providing an expert conclusion on the risk level evaluation
- Leading and participating in department wide transformation projects and actively contributing, communicating, and implementing changes, and supporting others through the process.
- Coaching auditors on the team to help develop their competencies by timely providing formal feedback that is objective, constructive and meaningful.
Senior IT Auditor, Vice President may also be recruited as dedicated subject matter experts (SME) in the Department and may have more customized job descriptions defining their role and responsibilities as a risk management expert.
Profile required
DIVISION DESCRIPTION:
The Audit Division (IGAD) represents Societe Generale's independent internal audit function, comprised of over 1,200 professionals covering Societe Generale's global business and services in over 150 countries. The SGUS Audit Department (SGIAA) within IGAD is a group of about 70 professionals with diverse backgrounds and subject matter expertise based in the US, Bangalore, and Brazil, responsible for Societe Generale's businesses in the Americas region. Constituting the third line of defense, IGAD conducts independent audits of operational entities in an objective, thorough and impartial manner in line with professional standards. IGAD assesses the compliance of the Group's operations, the effective level of risk exposure and management, the adequate enforcement of procedures and the effectiveness and relevance of the permanent control set-up.
SKILLS AND QUALIFICATIONS:
Technical Skills:
- Demonstrate a strong understanding of technology risk and controls within Investment Banking or Financial Services
- Understanding of debt and equity markets, and the front-to-back processing cycle
- Experience with applications and technology infrastructure typically employed to support an Investment Bank / Broker-Dealer
- Experience with auditing application, infrastructure (databases, operating systems, networking, storage, etc.) and information security controls using standardized frameworks (e.g., NIST Cybersecurity, FFIEC, COBIT, ISO 27001/2)
- Firm understanding of project management and systems development processes.
- Good understanding of Unix, Windows, Web, and Network Infrastructures
- Strong proven ability to use these skills to plan or execute audits using a risk-based approach (e.g., identify key risks and control points and suggest approaches for testing/sampling)
- Working experience and/or knowledge of relevant regulatory requirements (NYDFS Cybersecurity, GLBA, etc.)
Competencies:
- Demonstrates strong organizational/project management skills, able to establish goals, priorities, and realistic plans that maximize use of available resources; able to meet all deadlines; able effectively delegate, make decisions, solve difficulties, and timely escalate issues.
- Demonstrates a high level of written and oral communication skills through audit reports, meetings, and presentations.
- Highly motivated and committed to lead and progress; shows initiative, integrity, and creativity.
- Demonstrates willingness and readiness to provide support and collaborate to promote team spirit.
- Demonstrates openness to new ideas; able to propose and actively initiate process improvement.
- Able to maintain effective relationships with auditees and audit counterparts and facilitates conflict resolution.
- Demonstrates strong analytical skills, able utilize data analytics tools to analyze data.
EDUCATION/PRIOR EXPERIENCE
Required:
- Bachelor's or master’s degree in information systems, computer science or related field
- 7+ years of work experience in financial services, internal auditing, or relevant risk management positions
- Experience in managing sizeable project teams.
Desired / Plus:
- CISA, CIA, CISSP, CISM or other applicable certifications
- Work experience in relevant business or risk management function within corporate or investment bank.
- MBA in a business discipline
- Languages (Other than English): French
Business insight
OUR CULTURE:
At Societe Generale, we live by our 4 core values of commitment, responsibility, team spirit and innovation. We are engaged and demonstrate consideration for others. We act ethically and with courage. We focus our talent and energy on collective success. We experiment and propose new ideas. This way, we maximize our ability to serve client needs and anticipate market changes. Societe Generale is committed to strengthening bonds with colleagues, communities, and the world in which we live, because relationships are at the heart of how we operate.
For more information about our Culture and Conduct initiatives, please visit this link (https://americas.societegenerale.com/en/careers/get-know-culture/)
D&I:
Our Diversity & Inclusion Mission: Recruit, develop, advance, and retain a diverse workforce that is united in our efforts to enhance our competitive position and deliver innovative solutions to our clients.
Our Diversity & Inclusion Vision:
• Engaged workforce that is demographically diverse in a way that reflects the communities in which we operate
• Inclusive culture and workplace that recognizes employees' unique needs and utilizes their diverse talents
• Engage our community and marketplace, and position the organization to meet the needs of all its clients
For more information about our D&I initiatives, please visit this link (https://americas.societegenerale.com/en/societe-generale-about/diversity-and-inclusion/)
HYBRID WORK ENVIRONMENT:
For most positions, Societe Generale offers a hybrid work arrangement that offers employees the flexibility to work remotely, as well as on-site, in order to promote interaction and collaboration with colleagues while adhering to all SG standard protocols. Hybrid work arrangements vary based on business area. The applicable Business lines will determine and communicate the work arrangements that best meet their business needs.
COMPENSATION & SALARY RANGE:
Base salary range does not include overtime pay, bonus and/or other benefits, where applicable. Actual base salary offer will vary based on skills and experience.