Senior Data Management Auditor - IT technology, applications, data, third party, risk management, projects - 32090

Job Type: Contract
Positions to fill: 1
Start Date: Dec 11, 2023
Job End Date: Jun 10, 2024
Pay Rate: Hourly: Negotiable
Job ID: 133657
Location: Toronto


Location Address: 44 King Street W, 16th Floor/Hybrid 2- 3 days per week (negotiable)

Contract Duration: 6 months ( Dec 11th -Jun 10th)

Story Behind the Need

Business group: IT Applications and Data Management Audit (OU20016650)

The objective of this position is to fulfill an Audit Manager role, within a team of IT audit professionals to assess the design and operational effectiveness of internal controls relating to IT technology, applications, data, third party, risk management, projects and related processes supporting businesses throughout Bank.

Project: Compliance Transformation Program: Compliance Audit was tasked with providing independent validation, and effective third-line review and challenge, of the remediation work related to the Compliance Transformation program including testing for DE and OE on the milestones defined, in line with identified third-party findings, regulatory issues, internal audit issues, and the corrective actions taken to close these issues.


• Execute assigned audit activities independently as a team member under the direction of the OIC on assignments. This includes completion of audit testing, discussions with management and documentation of work performed.

• Executes, plans and reports on the assigned audit projects. Obtains a thorough understanding of the business/unit/process and associated risks, develops a risk-based audit plan/procedures, and schedules timing and resources.

• Delivers end-to-end process of the execution of the audit, and ensures the nature and extent of testing is appropriate to support the objective, scope and overall opinion. Completes timely review of work papers, ensures internal control weaknesses are clearly documented with recommendations addressing the root cause and are communicated timely to management.

• Ensures audit results are gathered, determines the root cause of the problem and the associated impact and reports accordingly. Review/edit reports and summarize issues. Present an overview of the audit results and findings to line management.

• Ensures audit reports are written to a consistently high standard and are finalized within established department metrics.

• Execute agreed-upon procedures for specific projects or investigations of a low to moderate complexity and/or confidential nature. May assist other audit staff in more complex projects that Audit may be requested to perform. Plan, document and seek agreement in advance to the project approach and confirm conclusions upon completion in writing.

• Act primarily as Team Participant or in some cases act as Officer-In-Charge (OIC) on assignments of low to medium complexity for assigned projects, processes and units.

• Ensure the bank standards and the Institute of Internal Auditors (IIA) Code of Ethics are maintained in the completion of all assignments.

• Manage self-development by confirming/communicating job expectations, identifying mentors/coaches and enquiring about training needs, ensuring timely completion of performance appraisals and managing assigned staff.

Must Have Skills:

1) 8+ years of hands-on IT audit experience

2) CISA certification

3) Proficient in auditing IT processes general controls (ITGC), application, data, third-party, technology controls and Project audits.

4) Proficient at applying risk-based auditing standards, practices, techniques, processes and methodologies to the performance and review of audits.

5) Working knowledge of the operations and regulatory environments of each of the audit units globally, as required for specific areas of assigned responsibility.

Nice-To-Have Skills:

1)     Technology Risk Management experience in the financial services industry is a significant advantage.

2)     Big 4 accounting firms experience (PwC, EY, KPMG, Deloitte)

Best vs. Average candidate

The best candidate will have diverse experience in IT audit working with compliance vs purely technical. Understand the process and technology support in the compliance and other business lines.

Soft Skills Required:

• Analytical skills

• Organized

• Strong verbal and written communication skills

• Can work well within a team


• Bachelor’s degree in IT, business, accounting, related discipline, or equivalent education/experience required

• CISA required

• CRISC/CPA an asset