Sr. IT Auditor

Texas Capital is built to help businesses and their leaders. Our depth of knowledge and expertise allows us to bring the best of the big firms at a scale that works for our clients, with highly experienced bankers who truly invest in people’s success today and tomorrow.

While we are rooted in core financial products, we are differentiated by our approach. Our bankers are seasoned financial experts who possess deep experience across a multitude of industries.

Equally important, they bring commitment investing the time and resources to understand our clients’ immediate needs, identify market opportunities and meet long-term objectives.

At Texas Capital, we do more than build business success. We build long-lasting relationships.

Texas Capital provides a variety of benefits to colleagues, including health insurance coverage, wellness program, fertility and family building aids, life and disability insurance, retirement savings plans with a generous 401K match, paid leave programs, paid holidays, and paid time off (PTO).

Headquartered in Dallas with offices in Austin, Fort Worth, Houston, Richardson, Plano and San Antonio, Texas Capital was recently named Best Regional Bank in 2024 by Bankrate and was named to ’ Dallas-Fort Worth metroplex Top Workplaces 2023 and GoBankingRate’s 2023 list of Best Regional Banks.

For more information about joining our team, please visit us at .

The Senior Information Technology Internal Auditor will assist Internal Audit Department management in the implementation and execution of a risk-based audit process.

The role will perform such tasks as : consulting with management regarding IT risk and controls; coordinating audits and projects, preparing reports and briefings while ensuring high standards are maintained related to work papers and other documentation.

Responsibilities :

Assist in the development and completion of a comprehensive risk based, Internal Audit plan, including SOX testing, and ensuring that all activities conform to established Internal Audit Department policies and procedures.

Plan and execute IT and Cybersecurity audits in a risk focused manner, with limited supervision, while maintaining independence and adhering to department and professional industry standards.

This includes staying abreast of best practices, industry developments, and changing or emerging risks and ensuring their coverage as appropriate.

Develop and use programs and analyses that assist in the audit and monitoring processes

Assist the organization in the monitoring and assessment of various areas of risk Establish and maintain partnerships with key business and audit partners.

Leverage specialized knowledge and skills, providing management with insight into areas of Technology risk.

Prepare, review, and present audit results with all levels of management.

Serve as lead auditor on specific assignments directing the activity of audit team members and / or third-party providers.

Prepare and execute specific audit programs, procedures, and tasks to provide assurance on the adequacy of IT governance, risk management, control and compliance processes of the Bank.

Work with managers of various business units to coordinate responses and develop action plans, as necessary, to respond to deficiencies and / or recommendations noted from internal audit, external auditors, and regulators.

Deliver on-time, high-quality audit reports that require limited revision by audit management. This includes the identification of and root cause analysis for control gaps, drafting recommendations for improvement where issues are identified, and providing an overall opinion on the risk and control environment.

Independently establish appropriate budgets and timeframes, with minimal input from audit management, and organize and complete work to meet them.

Ensure the quality of all internal audit work complies with Internal Audit Department Charter, established policies and procedures, and professional standards.

Through continuous education, maintain and improve knowledge of corporate governance, risk management, internal controls, compliance and internal audit processes.

Perform other duties as assigned.

Qualifications :

Bachelor’s and / or master’s degree in computer science, information technology, management information systems, computer engineering or equivalent discipline.

Holding or actively pursuing certifications related to technology or auditing, such as Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), or Certified Information Security Manager (CISM).

3+ years of experience in leading and conducting audits and / or assessments of key IT domains including information systems, cyber security, SDLC, change management, identity and access management, application security, business continuity / disaster recovery, data governance and / or other related processes.

Experience auditing financial services companies / banking institutions and regulatory experience strongly preferred.

Experience auditing organizational alignment with FFIEC IT Handbook requirements or other IT / Information Security frameworks preferred.

Big 4 accounting or consulting firm experience preferred.

Proficiency in Microsoft Office suite applications with specific emphasis on Word, Excel and PowerPoint. Secondary emphasis on Visio, Access, and Power BI.

Experience with audit analytics tools (i.e. ACL, IDEA) and visualization tools (i.e. Tableau, Power BI) preferred.

Knowledge of Sarbanes-Oxley (SOX) processes such as internal control documentation, walkthroughs, testing and reporting preferred

Understanding of commonly used International Professional Practices Frameworks (COSO and PCAOB), risks within financial services and related risk management processes preferred.

Ability to understand and communicate highly technical issues to both technical and non-technical audiences supported by a strong understanding of concepts related to information security, architecture, and technology risks.

Strong organizational skills, including effective time management and project management.

Advanced verbal and written communication skills, including documentation of findings and recommendations.