Ref No.: 17-00487
Location: New Jersey
Position Type:Contract
IT Auditor
4 months

Jersey City NJ 07310
W2-contract



Business Overview:
 
Internal Audit Department Description and Purpose: The North America Hub is part of BNP Paribas' global Internal Audit group (Inspection Générale) which is staffed by highly qualified individuals who perform high quality risk-based reviews of the Business, Operations and Functions, providing assurance and advice to anticipate and understand otherwise unexpected risks and put in place the adequate mitigating controls. The Internal Audit team helps senior management to protect the company's reputation by avoiding financial and reputational damage. Where it is too late to prevent failure, the team investigates the problem, helps management deal with the after effects and establish guards against re-occurrence.  Headquartered in New York, the North America Hub has primary audit responsibility for BNP Paribas' activities in the United States. The audit approach follows practices prescribed by the Institute of Internal Auditors (IIA).
 
 
Responsibilities:
 
Ensure the adequacy, effectiveness, and efficiency of Bank policies, procedures, and internal controls as they relate to the Information Technology infrastructure and Business Application Systems as per the terms of the Inspection Générale Audit charter and guidelines of the Bank.
  1. To follow audit professional standards and regulatory requirements in the performance of the day to day function of internal auditor.
2.       To plan and perform audits of Information Technology operating procedures and processing systems, to test operating procedures and processing systems through the performance of detailed fieldwork, to examine and evaluate results, to assess adequacy of controls, to communicate results, and to direct  follow-up efforts.
 
3.             To ensure the adequacy of controls in new Information Technology systems, systems enhancements, and operating procedures.
 
Qualifications:
  • In-depth experience in Information Technology infrastructure audit, or "hands on” Information Security within the Financial Services Sector,
  • Undergraduate Degree in Computer Science or related field, Advanced Degree (MS) is desired CISA (Certified Information Systems Auditor) preferred, CISM (Certified Information Systems Manager), CEH (Certified Ethical Hacker), and/or CISSP (Certified Information Systems Security Professional) a plus,
  • Extensive experience/training in principles and techniques of Information Systems auditing a must, knowledge of Investment Banking and Asset Management Services products preferred,
  • Understanding of management principles and the ability to recognize and evaluate deviations from good business practices,
.           Product Knowledge and Experience in the areas below:
  • Windows and UNIX Operating systems
  • Client/Server, Web Services/Internet/Intranet, Firewalls, Routers, Storage Systems,
  • Networking: LAN's, WAN's, MAN's, Remote Access Systems
  • Middleware: TIBCO, Websphere (MQ Series), etc …
  • Relational databases (MS/SQL, Oracle, Sybase, etc…)
  • Banking and financial systems (Trading and Settlement systems, Money Transfer systems, Accounting, etc.) preferred
  • Productivity Tools: Lotus Notes, Excel, Word, PowerPoint, and Visio
  • Experience in Systems development methodologies and associated automated systems desired,
  • "Hands on” IT Operations experience desired.
 
 
Minimum required qualifications
 
  • Minimum of 10 years recent experience in Information Technology audit, or "hands on” Information Security role,
  • Be able to demonstrate business tactical and strategic thinking, be innovative and creative with an ability to think outside of the box,
  • Have very good communication skills (verbal, written, presentation), interpersonal skills, strong facilitation and interviewing skills,
  • Exceptional analytical abilities, strong organization and teamwork skills,
  • Strong risk and control awareness, and knowledge of risk assessment methodology.
 
Preferred qualifications:
 
  • Would prefer recent experience in Information Security audit, or recent "hands on” operational role in Cybersecurity related field,
  • Extensive knowledge of common information security management frameworks,
  • Strong background in security operations, process, solution and technologies,
  • Extensive knowledge of IT infrastructure, key processes, and technology-oriented risk issues specifically around security,
  • Strong knowledge of policy, compliance, and best practice security principles,
  • Would prefer experience within the Investment Banking/Asset Management Services/Financial Services sector.