Skip to main content

Or use LinkedIn Job Matching to find an opening that matches your experience.

Start Matching

Manager of Audit II-IT/Cybersecurity

Apply Now
Job ID 3LOD-14780 City Los Angeles State California Additional Location: Conroe , Texas - Atlanta , Georgia - Cincinnati , Ohio - San Francisco , California - Raleigh , North Carolina - New York , New York - Boston , Massachusetts Exempt/Non Exempt Exempt Shift Day Work Schedule M-F, 8-5
Job Details:
MANAGER OF AUDIT II-IT/CYBERSECURITY


WHAT IS THE OPPORTUNITY?

The Audit Manager II (AM II) of Cybersecurity and Infrastructure will support the Director IA, CNB Cybsercurity and Infrastructure, and the MD IA, US Technology in providing independent, objective assurance over the design and operation of CNB's IT risk management practices, governance processes and the system of internal controls. The position will facilitate audit execution relating to Cybersecurity and Infrastructure. This includes leading and executing audit activities with an IT audit scope where there is an impact to CNB and its subsidiaries / management affiliates. Examples of audit subject matter includes cybersecurity operations, data protection and data privacy, identity and access management, IT risk management, security architecture and engineering, cloud computing, data center operations, data communications and networks, server virtualization, data storage and database technologies. Will also provide support in responding to external auditors and US regulators (FRBNY, OCC) and to meet the evolving demands of the US regulatory environment and heightened expectations of internal audit. This includes the coordination of IT related regulatory continuous monitoring, coordination of IA responses to US regulatory examinations, and the verification of CNB IT regulatory issues.


Third Line of Defense
[relevant blurb here]


WHAT WILL YOU DO?

  • Executes on the annual Audit Plan for CNB IT Cybersecurity and Infrastructure audit universe, ensuring that audits conform to local and global regulatory and internal audit requirements.
  • Perform Vulnerability assessment and penetration testing methodologies and processes for the web, thick client, and mobile applications
  • Implement the execution of the audit plan and ensure effective audit practices for traditional and continuous audits. Collaborate with broader Global RBC and CUSO IT teams and departments to achieve the plan (where needed).
  • Make recommendations to clients on control deficiencies and follows up to ensure significant deficiencies are corrected. Assist business management to develop appropriate action plans to address identified deficiencies, and ensure corrective actions are implemented in a timely manner to effectively address the issues.
  • Plan and execute on moderate to complex and confidential/special audit projects enterprise wide as requested by senior management of the Bank.
  • Communicate trends in risk and control issues to senior management on the results of ongoing reviews of the businesses that are key relationships, or any other business as requested.
  • Provide support for CNB IT and US-wide regulatory requests, responses and meetings.
  • Raise the technical knowledge of the group through various courses, seminars and in-house training in the areas of Information Technology for existing and emerging technologies, and related risk management framework, compliance and audit techniques.
  • Raise the technical and business knowledge of the group through IT and business auditor cross integration and allocation. Identify new opportunities that would result in cross-team collaboration, develop talent for future roles and create a mutually beneficial situation that allows business and IT auditors to cross pollinate experience and knowledge.
  • Build, direct, counsel, and instruct staff assigned to an engagement and review audit plan, findings and reports for sufficient scope and for accuracy.


WHAT DO YOU NEED TO SUCCEED

Must-Have*

  • Bachelor's Degree accounting, finance, business, social science or related field
  • Minimum 5 years banking / audit experience within Information Technology, with Cybersecurity and Infrastructure audit experience.
  • Minimum 3 years of business experience in a financial institution or technology company, dealing with multiple business platforms, business processes, geographies, and legal entities
  • CISA - Certified Information Systems Auditor
  • CISM - Certified Information Security Manager
  • CIA - Certified Internal Auditor
  • CEH-Certified Ethical Hacker


Skills and Knowledge

  • Understanding of network, desktop and server technologies, including experience with network intrusion methods, network containment, segregation techniques, and technologies such as Intrusion Detection Systems (IDS) and Intrusion Protection Systems (IPS)
  • Experience with Windows Active Directory and related exploits / Misconfigurations
  • Experience with SIEM technologies, log management tools, security analytics platforms.
  • Security with the software development lifecycle
  • Data Loss Prevention (DLP)
  • Familiarity with Microsoft SQL database functionality and exploitation
  • Knowledge of cloud architecture designs and patterns in multi-cloud and hybrid cloud environments
  • Understanding insider threat detection, network security, and traffic analysis hunting for malicious activity and initiating response actions.
  • Experience with open-source security tools including Wireshark, Nmap, burp, and Kali.
  • Demonstrable Threat hunting experience
  • Understanding of advanced persistent threat (APT)

*To be considered for this position you must meet at least these basic qualifications
The preceding job description has been designed to indicate the general nature and level of work performed by employees within this classification. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities, and qualifications required of employees assigned to this job.


INCLUSION AND EQUAL OPPORTUNITY EMPLOYMENT
City National Bank is an equal opportunity employer committed to diversity and inclusion. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status or any other basis protected by law.


ABOUT CITY NATIONAL

We start with a basic premise: Business is personal. Since day one we've always gone further than the competition to help our clients, colleagues and community flourish. City National Bank was founded in 1954 by entrepreneurs for entrepreneurs and that legacy of integrity, community and unparalleled client relationships continues to drive phenomenal growth today. City National is a subsidiary of Royal Bank of Canada, one of North America’s leading diversified financial services companies.

City National Bank requires all colleagues to be fully vaccinated against COVID-19 to work on-site at any of our locations.

Equal Opportunity Employer Minorities/Women/Protected Veterans/Disabled
Apply Now

Sign up for job alerts.

We will email you when relevant jobs are posted.

Interested InSelect a job category from the list of options. Select a location from the list of options. Finally, click “Add” to create your job alert.

  • Audit/Risk Management, Los Angeles, California, United StatesRemove
  • Audit/Risk Management, Conroe, Texas, United StatesRemove
  • Audit/Risk Management, Atlanta, Georgia, United StatesRemove
  • Audit/Risk Management, Cincinnati, Ohio, United StatesRemove
  • Audit/Risk Management, San Francisco, California, United StatesRemove
  • Audit/Risk Management, Raleigh, North Carolina, United StatesRemove
  • Audit/Risk Management, New York, New York, United StatesRemove
  • Audit/Risk Management, Boston, Massachusetts, United StatesRemove

"By submitting your information, you acknowledge that you have read and consent to City National Bank’s privacy policy and California Employee Privacy Statement and further consent to receive email communication from City National Bank relating to your application.