Senior IT Auditor

It's fun to work in a company where people truly BELIEVE in what they're doing!

The full job description covers all associated skills, previous experience, and any qualifications that applicants are expected to have.

We're committed to bringing passion and customer focus to the business.

Position Summary

Simmons Bank’s Internal Audit team assists the Audit Committee of the Board of Directors and Executive Management with their oversight and management responsibilities by providing independent and objective assurance, advisory and consulting services.

We collaborate with the business to improve operational efficiency, strengthen controls, mitigate risk, and integrate strategy by leveraging our team's abilities and experience and best practices.

The Senior IT Auditor will support the Director of IT Audit by performing Internal Audit activities to provide assurance on the adequacy and effectiveness of the IT internal control environment, IT risk management framework, compliance with IT policies and procedures, and IT regulatory requirements.

As a Senior IT Auditor, you will perform and, in some cases, lead IT audits and assist with special projects.

Essential Duties and Responsibilities

• Plan and perform IT audit assignments to assess the adequacy and effectiveness of IT processes and related controls while collaborating / supervising a team of internal and co-sourced IT audit professionals.
• Prepare detailed working papers that evidence the work performed and any issues that arise.
• Draft, prepare, and submit IT audit issues and present them to senior management. Follow up on the remediation of IT audit issues and their closure.
• Act as an IT subject matter expert to maintain alignment with IT industry best practices.
• Collaborate with IT stakeholders by sharing expertise and providing accurate and timely information.
• Maintain an up-to-date knowledge of key IT risk indicators, industry related IT risks, and general financial services / banking industry practice.
• Perform audit assignments as directed, completing the audit phases within agreed timelines.
• Contribute to a positive work environment by demonstrating key attributes such as a strong work ethic, accountability, agility, continuous improvement, and collaboration.
• Supervise and review work product of team members to ensure quality. Develop auditing and compliance expertise of team members via coaching, formal and informal training, continuing education, and certifications.
• Conduct periodic IT audit risk assessments and monitoring any changes in the technology risk landscape in coordination with IT leadership and the Enterprise Risk Management program.
• Collaborate with IT management on new technology, initiatives, and services under development from an internal control perspective.

Representing Internal Audit on various IT and cross functional teams, committees and with various regulatory reviews.

• Collaborate with other corporate risk and control functions to ensure activities are coordinated and leveraged where possible.
• Coordinate IT audit activities with the external auditors, and efficiently performing Sarbanes-Oxley (SOX) IT general controls and security testing.
• Perform other duties and responsibilities as assigned.

Qualifications

To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill, and / or ability required.

Skills

• Strong analytical, audit planning and organizational skills.
• Strong verbal and written communication skills and interpersonal skills.
• Promote innovative ideas and ways of executing projects and internal infrastructure enhancements.
• Demonstrate commitment to the Bank’s and Internal Audit’s strategic vision. Be a self-starter and promote project ownership and responsibility for actions.
• Time management, problem solving, and organizational skills.
• Ability to read and write procedures, general business correspondence (including short- to- simple correspondence), routine reports, and memos.
• Ability to read and interpret documents such as simple instructions, procedure manuals, journals, and government regulations.
• Working knowledge of internal audit principles (IIA and COSO) and IT control frameworks (COBIT, NIST, SANS, and IT related ISO standards).

Education and / or Experience

• Bachelor’s degree in computer science, information systems, IT security, accounting, finance, or related field is required.
• 3+ years of demonstrated audit, internal control, or risk management related experience; Big 4 experience is preferred.
• Working knowledge of ITGC, ITAC, and SDLC.
• Professional certification, such as CISA, CISSP, CIA, CPA, is preferred.
• Working knowledge, skills, and experience in the principles and practices of technology, IT industry trends, cybersecurity, IT infrastructure, IT service management processes and controls, internal auditing, and accounting.
• Strong ability to build long-term collaborative working relationships with senior management.
• Strong written and verbal communication, presentation, and technical writing skills.
• Proactive, delivery focus, taking accountability for the delivery of assigned audit work in accordance with the IT audit plan.
• Experience in standard audit methodology (audit planning, fieldwork, and reporting), with an attention to quality to meet methodology requirements with minimal review.
• Experience with TeamMate and / or AuditBoard is a plus.

Other Qualifications

• Strong organizational, leadership, management, process and relational, time management, oral and written communications skills.
• Familiarity with the following technical areas / platforms beneficial :
• Operating Systems : IBM Mainframe.
• ERP : WorkDay.
• Windows OS and databases.
• Cloud computing environments.
• Network / Active Directory, Firewalls, Encryption, Anti-virus, intrusion detection.
• Data Analysis and visualization tools (R, Python, SQL, SAAS, SharePoint, PowerBI).

Other

Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for this job.

Activities, duties, and responsibilities may change at any time with or without notice.

Equal Employment Opportunity Information : Simmons First National Corporation and its subsidiaries are committed to a policy of equal employment with respect to a person's race, color, religion, sex, ancestry, sexual orientation, gender identity, national origin, covered veterans, military status, physical or mental disability or any other legally protected classifications.

Simmons First National Corporation and its subsidiaries are committed to Affirmative Action Programs consisting of results-oriented procedures to ensure equal employment opportunities.

These programs require positive action in lieu of neutral non-discrimination and merit hiring / performance policies.

J-18808-Ljbffr