IT Auditor

IT AUDITOR (JOB NUMBER: IG-030322-SB-001)

At BNP Paribas Canada, it is our employees which make the difference... Our 75 nationalities are part of our diversity

Do you like challenges, a structured framework, the prospect of optimizing and innovating? You are known for your originality and want a certain freedom to think while sharing your knowledge and ideas?

**... Come help us contribute to the growth of our Canadian platform**

You will benefit amongst other things from:

- Access to social volunteer and recreational programs, via our many Employee Resource Groups (ERGs)
- Opportunities for career development through active internal mobility and our innovative training program: Canada Academy
- A brand new workspace, flexible, comfortable and easily adaptable to your needs: remote work opportunities, standing desks, innovation lab., open meeting rooms and spaces

**Position Level Internally**:Vice-President ( Based on experience, this compares to a Manager or Senior manager Level)

**Business Overview**:
Internal Audit Department Description and Purpose: The North America Hub is part of BNP Paribas’ global Internal Audit group (Inspection Générale) which is staffed by highly qualified individuals who perform high quality risk-based reviews of the Business, Operations and Functions, providing assurance and advice to anticipate and understand otherwise unexpected risks and put in place the adequate mitigating controls. The Internal Audit team helps senior management to protect the company’s assets and reputation, helps management deal with the after effects and establish guards against re-occurring problems. The North America Hub has primary audit responsibility for BNP Paribas’ activities in the United States and Canada. The audit approach follows practices prescribed by the Institute of Internal Auditors (IIA).

**Responsibilities**:

- Evaluate the adequacy, effectiveness, and efficiency of Bank policies, procedures, and internal controls as they relate to the Information Technology infrastructure and Business Application Systems as per the terms of the Inspection Générale Audit charter and guidelines of the Bank
- Follow audit professional standards and regulatory requirements in the performance of the day to day function of internal auditor
- Perform audits of Information Technology operating procedures and processing systems, test operating procedures and processing systems through the performance of detailed fieldwork, examine and evaluate results, assess adequacy of controls, communicate results, and direct follow-up efforts
- Plan, or assist the Head of Assignment to plan each audit prior to the commencement of fieldwork (includes meeting with IT and Bank management, discussing changes/events that have a material impact on the activity, revising/enhancing the examination program and scope as warranted)
- Perform fieldwork (reviews of departmental procedures, detail tests of procedures, processing systems, and records)
- Prepare work papers with particular focus on documentation and analysis to support findings
- Prepare draft findings and recommendations and follow-up on findings to ensure that the appropriate corrective actions were taken by reviewing and validating supporting evidence
- Finalize and distribute draft of audit findings/recommendations to auditees for internal control improvements
**Minimum Required Qualifications**
- Minimum of five (5) years recent experience in Information Technology audit
- Undergraduate Degree in Computer Science or related field
- CISA (Certified Information Systems Auditor),
- Extensive experience in principles and techniques of Information Systems auditing
- A good understanding of Data Governance and Management, and Data Usage, along with an in-depth knowledge of the bank's work streams involved in Data Quality.
- Strong expertise utilizing advanced functions in Spreadsheet (i.e., Excel), database (i.e., Access, Oracle, SQLSVR), data extraction software (Tableau preferred), and scripting languages (i.e., SQL, Python)
- Understanding of management principles and the ability to recognize and evaluate deviations from good business practices
- Ability to maintain effective relations between auditors and auditees, and effectively communicate audit results to a wider, non-technical audience
- Exceptional analytical abilities, strong organization and teamwork skills
- Experience with banking and financial systems (preferably Trading and Settlement systems, Money Transfer systems, Compliance and Surveillance systems, etc.)
- Ability to demonstrate business tactical and strategic thinking, innovation and creativity
- Excellent communication skills (verbal, written, presentation), interpersonal skills, strong facilitation and interviewing skills
- Comfort in discussing IT Controls with bank’s management, and obtaining agreement on recommendations pertaining to technology / systems under review
- Strong risk and control awareness, and knowledge of ri