The Internal Audit Department (IAD) of The Charles Schwab Corporation provides independent and objective assessments to figure out whether all significant risks are identified and appropriately reported by management and risk functions to the Board and Executive Management, to evaluate whether risks are adequately controlled, and to challenge Executive Management to improve the efficiency of governance processes, risk management, and internal controls.
The Technology enterprise team is seeking a Senior Specialist primarily responsible for audit activities covering various line of businesses focused on key application risks and controls. The Technology enterprise team is responsible for the execution of application, infrastructure, and project audits. Application audits focus on automated functionality and data integrity that support business processes such as segregation of duties, configuration management, system interfaces, and data processing. Infrastructure audits focus on systems and technology that support and secure Charles Schwab applications with a focus on areas such as cybersecurity, data center, information technology (IT) operations, change management, network security, and cloud computing. Project audits are assessments over key initiatives to settle whether intended business objectives were met and to identify risks or issues early.
Reporting to a Managing Director of the Technology enterprise team, the Internal Audit Senior Specialist will have responsibility for the independent and objective assurance activity designed to improve the organization’s operations and compliance with key regulations by evaluating and improving the efficiency of risk management, control, and governance processes. This position will focus on application technology risks within the coordinated audits, working closely with the operational auditors. This position is also responsible for working with audit resources provided by an external co-sourcing provider.
What youre good at
- Audit Execution: Participate in the planning and execution of internal audit assignments specific to technology. Ensure work is performed in accordance with IIA standards and IAD policies and procedures. Responsibilities will include: scheduling and participation in audit meetings; participation in prioritization discussions; drafting of audit work; design and execution of testing; and completion and review of work papers. Additionally, assist in the tracking of team operations including audit status, issue status, and budgets.
- Issues Identification: Based on the results of audit testing, identify and draft audit observations for review by the Internal Audit Manager/Senior Manager (and above levels) and subsequent debriefing with the key partners (typically VP-level and below).
- Issue Management and Validation: Conduct validation testing of the audit issue action plans completed by the business.
- Risk Assessment: Under the supervision of IAD Management, participate in the annual Risk Assessment process, including scheduling and participation in meetings with partners, and the scoring and documentation of risk ratings.
- Coaching: Provide support, mentoring, and feedback to audit team members throughout the audit. Provide assistance with onboarding and ongoing support to new team members.
- Administration/Training: Completion of firm-wide and departmental administration and training requirements.
- Other Initiatives/Special Projects: As needed, assist with special projects related to business process improvement or internal team needs.
What you have
- 3 - 5+ years of information technology audit experience. Financial services and/or Big 4 Accounting experience a plus.
- Demonstrated experience performing internal audits and their associated team members, among a complex operational and regulatory environment.
- Knowledge and experience in control theory and professional auditing practices.
- Ability to work as a member of a project team and champion a strong working relationship with external co-sourcing providers and internal lines of businesses.
- CPA, CIA, or CISA preferred. Other relevant certifications will be considered.
- Understanding of risks and internal controls and the ability to evaluate and determine adequacy and effectiveness of controls.
- Knows the latest on industry and regulatory issues and standard methodologies; imparts this knowledge to the team and the auditees.
- Excellent analytical skills, including the ability to anticipate issues and to design appropriate solutions.
- Strong verbal and written communication skills with a demonstrated ability to articulate effectively and professionally.
- Uses relationships and insights to successfully influence others. Builds authentic and trusted relationships to create alignment and support.
- Bachelor’s degree strongly preferred.
- Ability to travel 15-20%