Overview

Job Family: Internal Audit & Credit Risk Review

Serve as the third line of defense, providing the Board Audit & Board Risk Committees and senior management with independent assurance on the quality and effectiveness of internal controls, risk management (current or emerging), governance processes and systems, and lending units (overall asset quality, risk and compliance processes, underwriting policies, procedures, limits, concentrations), thereby helping to protect the company’s value, solvency and reputation. To such ends, Internal Audit evaluates: the effectiveness and efficiency of these processes and systems; compliance with applicable laws and regulations, and with the requirements from supervisors; the reliability and integrity of financial and operational information; and, asset integrity. Credit Risk Review assesses the quality, quantity, direction and overall credit risk in the organization.

Job Function: IT Audit

Provide assurance on the quality and effectiveness of internal control, risk management (current or emerging) and governance processes and systems in the IT Risk space. 

Summary of Responsibilities:

The primary function of the Manager, IT Audit is to lead the execution of the individual audit reviews and other audit activities included in the risk-based Internal Audit Plan, overseeing the work performed by the audit staff. The IT Manager ensures audits are performed in a timely manner, ensuring all audit quality and client relation standards are met, and courteous and professional behavior is observed in all situations.

Essential Functions:

  • Develops a broad and comprehensive understanding of the business or area.
  • Plans audit reviews and activities with the assistance, where applicable, of the Sr. Supervisor.
  • Reviews industry standards and regulatory rules and expectations to ensure they are incorporated into audit procedures and
    properly covered by the audit team.
  • Oversees audit staff as part of internal audit reviews and activities. As such, reviews and challenges critical testing and key work
    papers (planning memo, risk control matrix, etc.) prepared by audit staff as part of internal audit reviews and activities, including
    post-audit follow-up.
  • Assigns staff to complete specific audit tests and procedures.
  • Vets audit recommendations with the Expert/ Director/ Sr. Director.
  • Presents, discusses and agrees audit results recommendations with business management.
  • Drafts the audit report/ conclusion document for the Expert/ Director/ Sr. Director.
  • Performs detailed reviews of findings, recommendations and ratings, prior to submission to the Expert/ Director/ Sr. Director.
  • Ensures assigned audit reviews and activities are completed within the budgeted timeframe.
  • Ensures high quality, risk-focused audit reviews and activities, in accordance with Internal policies, methodologies, and
    standards.
  • Starts assisting Expert/ Director/ Sr. Director in risk assessment activities.
  • Demonstrates experience in managing and developing talent within the teams. Provides team members with on the job training.
  • Participates in the completion of internal audit staff performance appraisals, promotion recommendations, terminations, and
    professional development.
  • Attends professional training actions provided by the company.
  • Provides consistent quality service to both internal and external stakeholders that meets the company’s standards.

Other Functions:

  • Recruits, trains, develops, motivates, sets goals, and provides on-going feedback to a team of direct reports.
  • Other duties as assigned.

Supervisory Responsibilities:

Manages subordinate managers and professional staff. Is responsible for the strategic guidance, development and evaluation of employees. Carries out supervisory responsibilities in accordance with Santander’s policies and applicable laws.

Requirements:

  • Education –
    • Bachelor’s Degree: Computer Science, System Engineering, Technology discipline, or equivalent field.
  • Experience –
    • At least 7-9 years audit experience. Additional relevant experience will be considered on an exceptional basis.
    • Previous audit experience may not be required in highly specialized / complexity areas.
  • Skills & Abilities –
    • Analytical and problem solving skills
    • Technology and computer skills, with the ability to effectively use Microsoft Office (Word, Excel, Outlook, Powerpoint)
    • Detail oriented with organizational skills
    • Verbal and written communication skills and the ability to effectively communicate with all levels of management
    • Time management skills and the ability to complete multiple projects simultaneously and in a timely manner
    • Solid diplomatic skills with the ability to resolve conflict in a civil manner
    • Great leadership skills, teamwork skills, as well as the ability to work independently
    • Progressive decision making skills, making educated and timely judgments
    • Ability to train team members adequately to advance skills and knowledge
    • Ability to quickly learn new information technologies and systems in order to evaluate controls
    • Understand Auditing Accounting and IT general controls (Computer Operations, Access Controls)
  • Licenses & Certifications –
    • CISA could be required; field-related certification (CRISC, CISSP, CEH,  etc.) preferred

Competencies:

  • Collaboration – Relationship Management:
    • Proficient – Applying and Executing
      • Knows who to reach out to inside and outside of one’s team to get work done
      • Takes action to enhance working relationships needed to achieve seamless work flow
      •  

  • Execution – Accountability:
    • Proficient – Applying and Executing
      • Follows through to meet commitments to others
      • Takes responsibility for achieving strong results, despite balancing multiple complex demands
      •  

  • Influence – Information Sharing:
    • Proficient – Applying and Executing
      • Uses information and data effectively to support a position and present a rational case
      •  

  • Change Orientation – Support for Change:
    • Proficient – Applying and Executing
      • Understands rationale for change and adjusts schedules and tasks to make things work
      • Anticipates and plans for changes in work schedules and assignments
      •  

  • Problem Solving – Solution Definition:
    • Proficient – Applying and Executing
      • Sees through complexity and detail to get to the critical issues at hand
      • Takes into account the wider context within which problems exist
      •  

  • Customer Focus – Issue Ownership:
    • Proficient – Applying and Executing
      • Addresses customer’s requests, ensures concerns are recorded accurately and action is initiated appropriately
      • Makes extra effort to satisfy customers needs and meet commitments
      •  

  • Risk Management – Continuous Process Improvement:
    • Proficient – Applying and Executing
      • Proactively works to streamline processes and identify and eliminate redundancies
      • Contributes to the implementation of new methods, policies, processes, procedures, or techniques
      • Independently performs monitoring and testing of processes
      •  

  • Risk Business Acumen – Financial Command:
    • Proficient – Applying and Executing
      • Understands specific financial and accounting standards to identify and assess the impact and likelihood of operational risks
      •  

Working Conditions:

  • Frequently: Minimal physical effort such as sitting, standing, and walking.
  • Occasional moving and lifting of equipment and furniture is required to support onsite and offsite meeting setup and teardown.
  • Physically capable of lifting up to fifty pounds, able to bend, kneel, climb ladders.

Employer’s Rights:

  • This job description does not list all the duties of the job.  You may be asked by your supervisors or managers to perform other duties.  You will be evaluated in part based upon your performance of the tasks listed in this job description.
  • The employer has the right to revise this job description at any time.  This job description is not a contract for employment, and either you or the employer may terminate employment at any time, for any reason.