Search
IT Senior Audit Manager - Third Party Risk

IT Senior Audit Manager - Third Party Risk

locationNew York, NY, USA
PublishedPublished: 11/23/2024
Accounting
Full Time

You Lead the Way. We’ve Got Your Back.

With the right backing, people and businesses have the power to progress in incredible ways. When you join Team Amex, you become part of a global and diverse community of colleagues with an unwavering commitment to back our customers, communities and each other. Here, you’ll learn and grow as we help you create a career journey that’s unique and meaningful to you with benefits, programs, and flexibility that support you personally and professionally.

At American Express, you’ll be recognized for your contributions, leadership, and impact—every colleague has the opportunity to share in the company’s success. Together, we’ll win as a team, striving to uphold our company values and powerful backing promise to provide the world’s best customer experience every day. And we’ll do it with the utmost integrity, and in an environment where everyone is seen, heard and feels like they belong.

Join Team Amex and let's lead the way together.

About the Internal Audit Group at American Express:

Our Internal Audit Group is a worldwide function with 300+ team members and offices across nine countries within American Express. Our mission is to protect and enhance organizational value by providing independent, objective, risk-based assurance, advisory services and to influence the way the company manages risk.

We are committed to growing our audit staff significantly as we continue to expand and enhance the Internal Audit Group. Our assurance and risk professionals have diverse backgrounds including internal controls, consumer compliance, technology, operational risk, financial accounting, data analytics, and banking operations. Our audit teams align to key risk areas and business units to ensure IAG can provide comprehensive and risk-based audit coverage. In addition, IAG has a Professional Practices group responsible for managing audit operations, quality, and standards; regulatory relations; reporting; training and professional development; and key internal capabilities and technologies.

About the Role:

The IT Audit Manager, Third Party Risk will support the execution of audit work to evaluate the enterprise Third Party Risk Management (TPRM) and related processes against regulatory requirements and industry best practices.

Key Responsibilities

  • Participate as a key team member on audit projects responsible for assisting with annual planning and owning core audit tasks, more complex areas and challenging workloads on successive assignments
  • Collaborate with audit teams to understand the data behind key processes, risk and controls to develop analytic control tests and analyze and interpret their results
  • Proficient use of automated work papers, analytics and other department and company tools
  • Ensure effective and efficient execution of audits in conformance with professional and department standards, budgets, and timelines
  • Present audit objectives, scope, and results to senior management, clearly articulating the potential impact of control gaps in a highly professional and proficient manner
  • Evaluate results, synthesize audit findings across the project, draft audit reports, and ensure effective and efficient audit execution
  • Validate that actions taken by management to address findings are appropriate and document the results
  • Maintain audit proficiency through ongoing professional development including data literacy skills
  • Proactively lead audit execution including supervise and mentor junior staff, review their workpapers, and escalate issues
  • Monitor a portfolio of audit analytics, assess analytic results, use the analytic data to tell the potential business story, and work with audit and business colleagues to validate that story
  • Assist team leaders, senior auditors and staff auditors in accomplishing team objectives and producing results
  • Lead multiple simultaneous audit projects of all sizes and complexity across multiple business areas within and outside of local region, in unfamiliar areas, and for different audit leaders
  • Lead integrated audits that consider financial, operational, compliance, and technology risks
  • Effectively coach, teach, mentor and develop junior colleagues and co-sourced resources in geographically diverse locations across all aspects of their role, the audit and analytic lifecycle, and audit methodology

Minimum Qualifications:

  • 5+ years of experience of industry regulations and expectations in assessing/auditing Third Party Risk Management and/or Cybersecurity
  • Bachelor's Degree in Accounting, Finance, Business, Risk Mgmt., or related field
  • Understanding of critical enterprise and third party risk management lifecycle activities
  • Ability to clearly articulate risk insights to stakeholders
  • Familiarity with relevant Interagency Guidance
  • Collaborate with colleagues and co-sourced resources in geographically diverse locations across all aspects of their role, the audit lifecycle, audit methodology and best practices.
  • Strong written and verbal communication skills that deliver high quality, actionable and value-added feedback to management on potential control issues and potential solutions to close gaps.
  • Effectively works independently, within a team and across teams in a fast-paced environment to drive results, using related project management skills, employing creative thinking, a focus on quality, and the ability to work on competing priorities.
  • Proven ability to support multiple projects concurrently delivering high quality work products, in compliance with internal audit standards and regulatory expectations.
  • Ability to quickly resolve complex risk issues
  • Ability to adapt to evolving risk landscapes
  • Effective utilization of risk management tools
  • Proven ability to analyze data, identify trends, and evaluate risk scenarios effectively
  • High-level understanding of risk mgmt. tools within a financial services environment (e.g., GRC tools)

Preferred Qualifications:

  • Certified Third-Party Risk Professional (CTPRP) certification
  • Advanced degrees (e.g., MBA, MSc)
  • Experience with large financial institutions (i.e., G-SIB, Category III/II bank)

Salary Range: $90,000.00 to $165,000.00 annually + bonus + benefits

The above represents the expected salary range for this job requisition. Ultimately, in determining your pay, we’ll consider your location, experience, and other job-related factors.

We back our colleagues and their loved ones with benefits and programs that support their holistic well-being. That means we prioritize their physical, financial, and mental health through each stage of life. Benefits include:

  • Competitive base salaries 
  • Bonus incentives 
  • 6% Company Match on retirement savings plan 
  • Free financial coaching and financial well-being support 
  • Comprehensive medical, dental, vision, life insurance, and disability benefits 
  • Flexible working model with hybrid, onsite or virtual arrangements depending on role and business need 
  • 20+ weeks paid parental leave for all parents, regardless of gender, offered for pregnancy, adoption or surrogacy 
  • Free access to global on-site wellness centers staffed with nurses and doctors (depending on location) 
  • Free and confidential counseling support through our Healthy Minds program 
  • Career development and training opportunities

For a full list of Team Amex benefits, visit our Colleague Benefits Site.

American Express is an equal opportunity employer and makes employment decisions without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, veteran status, disability status, age, or any other status protected by law.

We back our colleagues with the support they need to thrive, professionally and personally. That's why we have Amex Flex, our enterprise working model that provides greater flexibility to colleagues while ensuring we preserve the important aspects of our unique in-person culture. Depending on role and business needs, colleagues will either work onsite, in a hybrid model (combination of in-office and virtual days) or fully virtually.

US Job Seekers/Employees - Click here to view the “Know Your Rights” poster and the Pay Transparency Policy Statement.

If the links do not work, please copy and paste the following URLs in a new browser window: https://www.dol.gov/agencies/ofccp/posters to access the three posters.

Employment eligibility to work with American Express in the U.S. is required as the company will not pursue visa sponsorship for these positions.