Responsibilities
- Engaging the organizations stakeholders to understand and identify key processes and risks within a specific business unit
- Advanced knowledge of technology controls including: application security management, system architecture and design, technology operations and technology governance
- Identifying emerging firm-wide and business risks, understanding organizational changes through periodic engagements with business units, and completing risk assessments of these areas
- Making risk-based decisions on audit scope
- Designing and executing test plans to validate controls
- Investigating, escalating and vetting issues identified during testing
- Drafting audit reports and issue details
- Discussing observations and remediation activities with senior stakeholders
- Assisting in the formation of the annual audit plan
- Building collaborative relationships with all risk and control functions
- Contributing to ad-hoc presentations to clients, internal governance committees, Fund Boards, and regulatory bodies
- Leading or contributing to global department-wide initiatives
- Providing timely and candid feedback and coaching to staff
Qualifications
- Degree in management information systems, engineering, technology, computer science or a related field is preferred. BA/BS or equivalent is required
- 8-12 years of experience in a technology audit, technology risk management and/or information technology function, preferably within the financial services industry
- Relevant professional certifications are a plus (e.g., CISA, CISM, CRISC, CEH)
- Strong understanding of application development, databases, operating systems, networking and other key technology infrastructure components
- Interest in broad exposure to investment management, sales, trading, operations, risk management, finance, legal, and compliance activities in the asset management industry
- Familiarity with financial instruments and asset management processes