Assistant Vice President, IT Audit
Vienna, VA, United States
Navy Federal Credit Union
Navy Federal Credit Union is an armed forces bank serving the Navy, Army, Marine Corps, Air Force, Space Force, Coast Guard, veterans, DoD & their families. Join now!Navy Federal's Internal Audit team is in the midst of an exciting transformational journey to become a best-in-class Audit function! It is our vision to be a preferred advisor to the business by building and cultivating trust through the consistent execution of high-quality and risk-focused audit and advisory work. We’re focused on implementing efficient processes, maximizing our use of technology, integrating data analytics into everything we do, and investing in our biggest asset, our people. If this sounds like the type of team you’d like to be a part of, then we want to learn more about you!
We are growing our IT Audit team and hiring a new AVP of IT Audit. This leader will be an integral member of the leadership team responsible for leading, directing, and managing teams of highly skilled IT internal auditors who audit a variety of IT technologies that support Navy Federal’s core business processes. The AVP will collaborate and partner with operational/business/IT audit peer leaders to ensure applications, systems, and databases are appropriately covered as part of the integrated audits. This leader will serve as a trusted partner and strategic advisor to Navy Federal’s IT organization by building effective working relationships and collaborating with the first and second lines of defense.
- Lead, direct, and manage the execution of Navy Federal's IT audit planin accordance with Navy Federal and industry audit standards.
- Responsible for building, directly managing, and developing IT audit teams with the requisite knowledge and skillsets necessary to execute audits through hiring, training, coaching, skills assessment results review, performance management, and related leadership activities.
- Accountable for driving audit quality through review and approval of key audit deliverables including, but not limited to scope, risk and control matrices, detailed testing plans, business unit status deliverables, and audit reports.
- Champion change management efforts and the department strategic plan/initiatives within their team and the broader department.
- Perform supervisory/managerial responsibilities:
- Ensure adequate/skilled staffing; select employees and contractors.
- Establish performance goals and priorities.
- Prepare, conduct, and review performance appraisals.
- Develop, mentor and counsel staff.
- Provide input and/or prepare budget requirements.
- Responsible as the third line of defense for providing independent and objective assurance and advisory services to the senior management, Supervisory/Audit Committee and Board of Directors on the adequacy and effectiveness of technology and cybersecurity governance, risks, and controls to support the achievement of organizational objectives and continuous improvement in IT processes and member services.
- Under the leadership of the VP, IT Audit, assume responsibility/accountability for the leadership, direction, and management of multiple IT audit teams consisting of auditors and/or SME contractors in accordance with professional standards such as ISACA and IIA
- Lead, direct and manage the execution of a variety of IT audits and advisory engagements such as IT general controls, cybersecurity and privacy, data governance, infrastructure, ITIL processes, and third-party risk management, among others.
- Provide positive leadership to the IT audit staff through coaching/training, upskilling/reskilling, employee engagement, succession planning, and mentorship programs.
- Develop and maintain effective working relationships with key stakeholders across business units, setting the stage for a collaborative audit process.
- Partner with other leaders across Internal Audit to drive deeper collaboration and more effective working relationships, supporting the successful completion of integrated audits.
- Oversee an annual and multi-year IT audit cycle for the organization based on continuous risk assessment and effective challenge of Navy Federal's business/IT operations and related system of internal controls.
- Ensure that issues are appropriately identified, quantified, supported, and communicated to the business unit in a timely manner, along with risk-based recommendations to assist in implementing and enhancing internal controls.
- Review audit reports in a timely manner, providing feedback and direction to the audit team, to ensure reports are high-quality, well-written, and delivered timely to senior management, the President/CEO, and the Supervisory Committee.
- Obtain mutually agreed upon remediation plans and post-audit feedback from senior management and collaborate with the first and second lines of defense to ensure findings/issues are appropriately addressed and resolved within the timeframes provided.
- Develop and maintain an understanding of technology trends, relevant industry standards, frameworks, best practices, regulations, and technology used within related business areas to ensure organizational efficiency, effectiveness and compliance with policies, procedures, and vendor contractual requirements.
- Drive change and learning by embracing new, flexible, agile, and data-driven approaches to improve audit and business performance and efficiency.
- Represent the department, acting on behalf of IA leadership, as a liaison and spokesperson to Navy Federal committees, other Departments, regulators, and senior management.
- Stay abreast of and ensure compliance with applicable federal, state and industry laws, regulations, and guidelines.
- Perform other duties as assigned
- Bachelor's degree in IT, Cybersecurity, technology management or related field, or the equivalent combination of education, training and experience.
- Minimum of twelve (12) years of experience in IT auditing and managing multiple IT assurance and advisory engagements as the third line of defense in accordance with professional standards such as ISACA and IIA.
- Significant experience in IT risks and controls concepts and practices, including governance and security frameworks such as FFIEC, COBIT, COSO, NIST and ISO.
- Significant experience in operating within three lines of defense in a complex organization that requires interacting with and influencing a wide range of stakeholders.
- Extensive experience supervising and leading professional employees.
- Expert interpersonal and communication skills, including experience working with all levels of staff, management, stakeholders, and vendors.
- Extensive experience in collaborating across organizational boundaries and building partnerships across various functions.
- Demonstrated ability to lead through ambiguity, and persistence to move ahead regardless of barriers.
- Expertise in demonstrating thought leadership, initiative taking, decision-making and creativity in solving technology, cybersecurity, and business problems.
- A self-starter with a "can-do" attitude; a driver and implementer who possesses the poise and ability to act calmly and competently in high-pressure, high-stress situations.
- Expert experience managing multiple priorities independently and/or in a team environment to achieve goals.
- Expert skill in leading with diplomacy and tact while maintaining appropriate assertiveness and persistence.
- Expert skill to influence, negotiate and persuade to reach agreeable exchange & positive outcomes.
- Expert analytical/quantitative, critical thinking and deductive reasoning skills
- Expert skill presenting findings/issues, conclusions, alternatives, and information clearly and concisely.
- Expert word processing, spreadsheet, and presentation software skills.
- Expert skill maintaining confidentiality and demonstrating integrity.
Desired Qualifications
- Experience in complex technology, cybersecurity, and integrated audits.
- Experience within a credit union/financial services institution.
- Experience working with regulators in the financial services industry.
- Working Knowledge of Navy Federal's products, services, programs, policies, and procedures.
- Professional Certifications (CISA, CISSP, CRISC, CIA, PMP, CPA, etc.).
- Master's degree in IT, Cybersecurity, technology/business management or related field, or the equivalent combination of education, training, and experience.
Hours: Monday - Friday, 8:00AM - 4:30PM
Location: 820 Follin Lane Vienna, Virginia 22180 | 5550 Heritage Oaks Dr. Pensacola, FL 32526
Navy Federal provides much more than a job. We provide a meaningful career experience, including a culture that is energized, engaged and committed; and fierce appreciation for our teams, who are rewarded with highly competitive pay and generous benefits and perks.
Our approach to careers is simple yet powerful: Make our mission your passion.
- Best Companies for Latinos to Work for 2024
- Computerworld® Best Places to Work in IT
- Forbes® 2024 America’s Best Large Employers
- Forbes® 2023 The Best Employers for New Grads
- Fortune Best Workplaces for Millennials™ 2023
- Fortune Best Workplaces for Women ™ 2023
- Fortune 100 Best Companies to Work For® 2024
- Military Times 2023 Best for Vets Employers
- Newsweek Most Loved Workplaces
- Ripplematch Campus Forward Award - Excellence in Early Career Hiring
- Yello and WayUp Top 100 Internship Programs
From Fortune. ©2024 Fortune Media IP Limited. All rights reserved. Used under license. Fortune and Fortune Media IP Limited are not affiliated with, and do not endorse products or services of, Navy Federal Credit Union.
Equal Employment Opportunity: Navy Federal values and celebrates diversity in the workplace. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected Veteran.
Hybrid Workplace: Navy Federal Credit Union is a hybrid workplace, and details will be discussed during your interview process.
Disclaimers: Navy Federal reserves the right to fill this role at a higher/lower grade level based on business need. An assessment may be required to compete for this position. Job postings are subject to close early or extend out longer than the anticipated closing date at the hiring team’s discretion based on qualified applicant volume. Navy Federal Credit Union assesses market data to establish salary ranges that enable us to remain competitive. You are paid within the salary range, based on your experience, location and market position.
Bank Secrecy Act: Remains cognizant of and adheres to Navy Federal policies and procedures, and regulations pertaining to the Bank Secrecy Act.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Agile Analytics Audits CIA CISA CISSP COBIT Compliance CRISC Data Analytics FFIEC Governance ISACA ITIL NIST Privacy Risk assessment Risk management
Perks/benefits: Career development Competitive pay Flex hours Team events
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.