IT Auditor

• Perform work under the direction of the IT Audit Manager or IT Audit Director, which can include individual or multiple audit assignments
• Assist with developing comprehensive risk and control matrices/audit programs for assigned audits
• Execute and document audit work within audit workpaper management system
• Assist with developing and presenting audit findings and audit reports
• Participate with and/or supervise less experienced auditors on assigned audits
• Follow up on the disposition of exceptions noted during audits, including internal, external, regulatory exam reports
• Assess personal development needs (training, career development, etc.) in conjunction with department management
• Assist the Audit Manager in the development of audit documents
• Perform and document walkthroughs of the major functions/sub-processes within the area being audited to understand the type of activities being performed, key and secondary controls, and other key management controls
• Perform control design assessment and control effectiveness testing according to the Risk Control Matrix
• Document test approach and results in a sufficient manner for a reasonably prudent individual to completely understand the work performed and conclusions reached strictly from the workpapers
• Communicate with the Audit Manager and the auditee throughout fieldwork any potential control weakness, policy violations, other issues
• Stay current and informed of federal and state banking laws and regulations applicable to the various functions, activities, products, and services

Job Qualifications/Requirements

• Bachelor’s Degree in related area such as information security, information technology, business management, business/accounting information systems
• 0 years of IT internal audit experience and/or IT Risk Management experience
• Professional certifications with audit, risk and security related designations a plus (e.g., CISA, CRISC, CISM, and CISSP)
• Knowledge of IT general controls and information security best practices (e.g., NIST, CIS Critical Security Controls, Cobit)
• Knowledge of internal control analyses and risk assessment methodologies, Institute of Internal Auditor Standards, Generally Accepted Auditing Standards, internal controls, Sarbanes-Oxley, COSO
• A self-motivated, results-oriented professional with experience and success working in a collaborative environment
• Knowledge of the financial industry is a plus
• Strong organizational, communication, and interpersonal skills in order to work with all levels of management
• Ability to deal with complex problems involving multiple facets and variables in non-standardized situations
• Ability to define problems, collect data, establish facts, and draw valid conclusions
• Ability to interpret an extensive variety of instructions/procedures
• Strong organizational, time management, and project management skills
• Ability to navigate through the organization
• Strong understanding of a risk-based internal audit approach
• Strong planning, problem solving, and prioritization skills
• Strong verbal and written communication skills
• Proficient in Microsoft Office products
• Experience with auditing software preferred
• Fluent in verbal and written Korean a plus
• Some travel may be required

Bank of Hope is an equal employment opportunity employer and does not discriminate on the basis of race, color, gender, religion, age, sexual orientation, genetic information, national or ethnic origin, disability, marital status, veteran status or any other basis protected by federal, state, or local law.