The Info. Sec Internal Controls Supervisor will work with the CIO, CISO, COO, Operations Division Management, and IT Leadership team to coordinate the gathering of information and evidence as required by various regulatory compliance exams and audits. Ensures that regulatory exams and audit engagements are efficient, organized, and accurate. Responsible for ensuring that requested information and meetings are promptly provided. Prepares internal management reports and recommends to management th... more detailse responses to audit findings and recommendations by Internal Audit, external firms and regulatory agencies. Drafts and reviews proposed policies, programs, standards, and procedures for quality, accuracy, and alignment to related documents.
ESSENTIAL DUTIES
and RESPONSIBILITIES - Complies with and stays abreast of all policies and procedures, federal and state laws applicable to the job such as: SOX, COSO, GLBA, COBIT Framework, FFIEC, Cyber Security Program, Intrusion Response Program, etc. Coordinate and facilitate all regulatory exams and audit engagements for the Operations Division and IT Department. Provides daily supervision and direction to Internal Controls Analysts, prioritizes activities, reviews work and provides coaching on performance. Ensure all exam and audit requests for information, meetings, and evidence are tracked and measured for timeliness, accuracy, and internal ownership. Ensure requested information is provided accurately and in a timely manner, with prompt and effective escalation of any items at risk of missing delivery deadlines. Maintain clear and organized records of information and responses provided to examiners and auditors, and make previously provided information available to internal respondents. Maintain a list of all pending action items and commitments related to audits, exams, and independent assessments, and provide proactive notification and escalation. Prepare draft versions of Program, Standard, and Procedure documents related to internal controls and business processes within the Operations Division. Proofread and evaluate internal Program, Standard, and procedure documents for accuracy and alignment to related documents. Treats people with respect; keeps commitments; inspires the trust of others; works ethically and with integrity; upholds organizational values, accepts responsibility for own actions. Provide, present and promote The Citizens Experience to all external and internal associates. Other duties as assigned SUPERVISORY RESPONSIBILITIES This job has supervisory responsibilities.
QUALIFICATIONS
- To perform this job successfully, an individual must be able to perform each essential duty completely and accurately. Appropriate knowledge of IT, Security, Cybersecurity, Bank policies and procedures; related state and federal laws and regulations. Excellent organizational and time management skills in a high demanding and multi-tasking environment. EDUCATION and/or EXPERIENCE Bachelor's Degree (B. A.) from four-year College or university; or one to two years related experience and/or training; or equivalent combination of education and experience. LANGUAGE SKILLS - Ability to read, analyze, and interpret common scientific and technical journals, financial reports, and legal documents. Ability to respond to common inquiries or complaints from customers, regulatory agencies, or members of the business community. Ability to write speeches and articles for publication that conform to prescribed style and format. Ability to effectively present information to top management, public groups, and/or boards of directors. MATHEMATICAL SKILLS Ability to work with mathematical concepts such as probability and statistical inference. Ability to apply concepts such as fractions, percentages, ratios, and promotions to practical situations, interpret, and draw bar graphs. REASONING ABILITY - Ability to solve practical problems and deal with a variety of concrete variables in situations where only limited standardization exists. Ability to interpret a variety of instructions furnished in written, oral, diagram, or schedule form.
COMPUTER SKILLS
- Expertise with common MS Office programs (Word, Excel, PowerPoint, Outlook) and use of SharePoint document repositories CERTIFICATES, LICENSES, REGISTRATIONS Security , CISA, or CISM certifications are desired but not required. OTHER QUALIFICATIONS - Must possess essential knowledge of Information Technology, Cybersecurity, Bank Applications, and relevant state and federal laws and regulations. Excellent organizational and time management skills are essential The following skills and experience are relevant and preferred- IT security management- Business process knowledge- Internal security audits- SSAE 18, SOC 1 & 2, HIPAA - Compliance & Risk management- Stakeholder relationship management- Project coordination
