IT Auditor

Societe Generale ("SG") is a top-tier global European bank headquartered in France, with 120,000 employees serving 26 million clients in more than 62 countries. SG operates in three complementary business areas: Global Banking and Investor Solutions, French Retail Banking, Private Banking & Insurance, and Mobility, International Retail Banking & Financial Services. The Internal Audit Division (IGAD) includes SG Internal Audit Americas (SGIAA) covering operations in the Americas. Job Title: IT Auditor Associate Responsibilities Participate in all types of regional or global IT audits, including dedicated IT audits and integrated audits with business/financial auditors. Independently create diagnostic matrices with proposed controls, identify data quality testing use cases, develop sampling strategies, and provide concise debriefing presentations to IGAD management and auditees. Ensure timely communication to Audit Management of significant issues and events affecting the company. Write clear and impactful findings and audit reports that add value to the organization. Follow up diligently on audit recommendations and action plans. Contribute to risk assessment, internal‑control evaluations, and other processes necessary to determine areas of risk or weakness for audit planning. Participate in department‑wide transformation projects (data analytics, digital transformation, etc.) and actively support implementation. Required Skills & Qualifications Bachelor’s degree in Computer Science, Information Systems, Information Technology or a business discipline. At least 3 years of experience in information systems, preferably in banking/financial institutions. Knowledge of cyber security principles, practices, and technologies. Knowledge of at least one IS/IT area: governance, projects, SDLC, production, security, risk management, disaster recovery, or technical infrastructure. Familiarity with IS/IT processes (incident, change, release, configuration management, etc.). Knowledge of IT security concepts, vulnerability testing, and security exploits. Familiarity with infrastructure components such as DB2, SQL Server, Oracle, Windows, UNIX, client/server architectures, web technologies, network components (firewalls, routers, switches). Proficiency in security assessment tools (vulnerability scanners, penetration testing). Understanding of network security, application security, and data protection. Familiarity with investment banking/financial products and one or more security frameworks (ISO 17799, COBIT, COSO, Common Criteria, FFIEC). Familiarity with relevant regulations (GLBA, California Privacy Bill, Volcker Rule/Dodd‑Frank). Language Ability to communicate in English, both orally and in writing, is required. Benefits & Working Environment Minimum 20 vacation days + 4 personal days. Supportive maternity, paternity, parental and adoption leave policy. Health and personal spending accounts ($2,000/year health, $1,000/year personal with 75+ eligible categories). Fully-sponsored virtual healthcare and Employee Assistance Program. Hybrid work arrangement across offices and remote options. Societe Generale is an equal opportunity employer committed to diversity and inclusion. All qualified applicants, regardless of race, religion, color, national origin, sex, disability, age, gender, sexual orientation, or any other protected status, are encouraged to apply. #J-18808-Ljbffr