Senior IT Auditor

Are you ready to support complex engagements and make significant impact? As a Senior IT Auditor, you'll have a unique opportunity to grow, learn, and provide assurance over a fast-paced IT environment undergoing digital transformation and modernization efforts, ensuring our IT infrastructure is robust and secure. Come join us and be at the forefront of innovation and excellence!

Role Overview

To contribute to the planning and execution of complex IT, information security, and integrated audits. May act as an Auditor-In-Charge on audits and will participate in Internal Audit initiatives. Play a role in promoting partnership, trust, and accountability within our organization and building deeper relationships with our audit stakeholders.

• Contribute toward the planning and execution of IT and/or integrated audits in accordance with Navy Federal and industry audit standards
• Analyze and assess Navy Federal's technological infrastructure to ensure processes and systems run accurately and efficiently, while remaining secure and meeting compliance regulations
• Plan and execute audits of the organization’s IT systems to ensure confidentiality, availability and integrity of system and processes
• Develop risk-based audit objectives, scopes, and test plans to ensure NFCU's IT systems and infrastructure comply with regulations, requirements, policies, and standards. 
• Occasionally act as Auditor-In-Charge on IT/integrated audits of lesser risk/complexity, providing guidance, coaching, and direction to Internal Audit staff regarding Navy Federal practices and industry standards
• Coordinate with points of contact and first/second lines of defense to conduct preliminary research, lead process walkthroughs, document process narratives and workflows, identify key risks and controls, and obtain audit evidence for testing
• Identify opportunities to leverage data analytics and technology to drive deeper risk coverage and insights to business partners
• Work across multiple audits concurrently. Apply critical thinking skills by understanding and executing assigned control testing and documenting results according to professional and internal standards
• Independently review and analyze audit evidence and results of testing to determine design and operating effectiveness of controls
• Identify and quantify issues and provide risk-based recommendations to implement and enhance internal controls to management in a timely manner
• Prepare audit workpapers to document relevant information obtained, analyzed, and evaluated that support audit observations/issues and conclusions
• Work collaboratively with other departments and stakeholders to provide insights and recommendations for improvement
• Partner with business areas to ensure adequate remediation plans are developed and implemented
• Contribute toward the development of high-quality, well-written, and timely audit reports for senior management, the President/CEO, and the Supervisory Committee
• When asked to operate as an Auditor-In-Charge, review work papers prepared by internal auditors assigned to audits and provide coaching and mentoring
• Manage audit timelines to ensure the timely reporting of identified risks and issues; report delays and issues in overall audit to management and lead resolution of audit project issues
• Participate in Internal Audit strategic initiatives and act as a champion of change and continuous improvement
• Stay abreast of and ensure compliance with applicable federal, state and industry laws, regulations, and guidelines
• Actively monitor and stay current with evolving industry trends, technology, and emerging risks that may impact the company
• Perform other duties as assigned

• Minimum three years of experience in IT audit, with strong knowledge of IT control concepts and practices and risk-based auditing techniques
• Advanced knowledge of IT Risk, General Controls, Information Security Frameworks and best practices
• Advanced knowledge of technology and financial systems risk assessments and documentation
• Experience leading IT/integrated audits and/or overseeing other audit staff in the execution of audit work 
• Advanced interpersonal and communication skills, including experience working with all levels of staff, management, stakeholders, and vendors
• Significant experience in presenting findings, conclusions, alternatives, and information clearly and concisely
• Advanced skill in managing multiple priorities independently and operate well in a team environment to achieve goals
• Advanced skill in collaborating across organizational boundaries and building partnerships across various functions
• Advanced skill to influence, negotiate & persuade to reach agreeable positive outcomes 
• Advanced organizational, planning and time management skills 
• Advanced word processing and spreadsheet software skills 
• Advanced critical thinking, analytical, and problem-solving skills
• Bachelor’s degree or the equivalent combination of experience, education, and training

Desired Qualifications

• Experience with credit union financials and/or regulations
• Working Knowledge of NFCU products, services, programs, policies, and procedures 
• IT Certifications – CompTIA A+, Network+, Security +, CISA, CRISC, CISSP or GIAC Security Essentials (GSEC)
• Certified Internal Auditor (CIA), Certified Public Accountant (CPA)
• Cloud certifications – AZ-900 (Fundamentals), AZ-500 (Security Engineer), AWS Cloud Practitioner, AWS Solutions Architect Associate/Expert, AWS Security Specialty, GCP Digital Leader, GCP Professional Cloud Architect, GCP Professional Security Engineer
• Cloud experience, including Oracle, Azure, Pega, MS Dynamics. GCP, AWS
• Knowledge of the Federal Financial Institutions Examination Council (FFIEC) IT Examination Handbook and IT Booklets
• Master’s degree in Computer Science, Information Technology, or related field

Hours: Monday - Friday, 8:00AM - 4:30PM

Locations: 820 Follin Lane, Vienna, Virginia 22180 | 5550 Heritage Oaks Drive, Pensacola, FL 32526 | 141 Security Drive, Winchester, VA 22602

Navy Federal provides much more than a job. We provide a meaningful career experience, including a culture that is energized, engaged and committed; and fierce appreciation for our teams, who are rewarded with highly competitive pay and generous benefits and perks.

Our approach to careers is simple yet powerful: Make our mission your passion.

• Best Companies for Latinos to Work for 2024
• Computerworld® Best Places to Work in IT
• Forbes® 2025 America’s Best Large Employers
• Forbes® 2024 America's Best Employers for New Grads
• Forbes® 2024 America's Best Employers for Tech Workers
• Fortune Best Workplaces for Millennials™ 2024   
• Fortune Best Workplaces for Women ™ 2024
• Fortune 100 Best Companies to Work For® 2025
• Military Times 2024 Best for Vets Employers
• Newsweek Most Loved Workplaces
• 2024 PEOPLE® Companies That Care
• RippleMatch Recruiting Choice Award
• Yello and WayUp Top 100 Internship Programs

From Fortune. ©2025 Fortune Media IP Limited. All rights reserved. Used under license. Fortune and Fortune Media IP Limited are not affiliated with, and do not endorse products or services of, Navy Federal Credit Union.

Equal Employment Opportunity: All qualified applicants will receive consideration for employment without regard to age, race, sex, color, religion, national origin, disability, veteran status, pregnancy, sexual orientation, genetic information, gender identity or any other basis protected by applicable law.

Hybrid Workplace: Navy Federal Credit Union is a hybrid workplace, and details will be discussed during your interview process.

Disclaimers: Navy Federal reserves the right to fill this role at a higher/lower grade level based on business need. An assessment may be required to compete for this position. Job postings are subject to close early or extend out longer than the anticipated closing date at the hiring team’s discretion based on qualified applicant volume. Navy Federal Credit Union assesses market data to establish salary ranges that enable us to remain competitive. You are paid within the salary range, based on your experience, location and market position.

Bank Secrecy Act: Remains cognizant of and adheres to Navy Federal policies and procedures, and regulations pertaining to the Bank Secrecy Act.