Current jobs related to IT Auditor - Old Toronto, Ontario - State Street Corporation

We are seeking a highly skilled IT Auditor to join our Corporate Audit Division. As an IT Auditor, you will play a critical role in ensuring the effectiveness of our internal controls and risk management processes.

1. Perform audit work in line with our risk-based methodology and industry standards to identify and understand risk, determine control objectives, and evaluate whether controls sufficiently address identified risks.
2. Obtain and analyze evidentiary data to draft informed and objective opinions on the adequacy and effectiveness of controls under review.
3. Draft audit issues that clearly outline the identified issue and underlying root cause.
4. Review corrective actions taken by management to improve deficient conditions.
5. Escalate potential issues/obstacles to audit management along with proposed solutions.
6. Develop and maintain understanding of internal State Street products and processes as well as relevant industry and regulatory topics.
7. Develop relationships with audit clients and business partners across the lines of defense; serve as the primary audit contact for assigned area in individual audit engagements.
8. Contribute to change initiatives through active participation in working groups and adoption of practices in day-to-day responsibilities.
9. Assist in the onboarding of audit staff.

• University degree in Information Systems, Computer Science, or related field; or, an advanced degree in Information Technology, Cyber Security, or Systems Engineering preferred.
• Preferred professional certification(s): CISA, CISSP, CRISC, CISM.
• Experience in auditing information technology general controls (ITGCs).
• 3+ years of experience executing or auditing the following technology-related areas:
• Financial services operational processes and technology
• Automated business process controls
• Enterprise security controls frameworks
• Enterprise application development models (i.e., waterfall, rapid prototyping, agile)
• IT asset Management
• Lifecycle Management
• Technology Governance
• Identity and Access Management / Privileged Access Management / Adaptive Authentication Solutions
• Resiliency and Business Continuity Management
• Cloud Solutions (SaaS, PaaS, IaaS)
• Data Loss Prevention technologies and support processes
• Vulnerability Scanning and Penetration Testing
• Perimeter / Internal Security Technologies (Firewalls, Intrusion Detection, and Prevention Systems)
• Network Segmentation and Separation Solutions
• Platform and Configuration Hardening Practices
• Threat Intelligence and Insider Threat Detection
• Security Incident and Event Management (SIEM) Technologies
• Cyber Incident and Response
• Data protection (GDPR)

State Street is one of the largest custodian banks, asset managers, and asset intelligence companies in the world. From technology to product innovation, we're making our mark on the financial services industry. For more than two centuries, we've been helping our clients safeguard and steward the investments of millions of people. We provide investment servicing, data & analytics, investment research & trading, and investment management to institutional clients.

We truly believe our employees' diverse backgrounds, experiences, and perspectives are a powerful contributor to creating an inclusive environment where everyone can thrive and reach their maximum potential while adding value to both our organization and our clients. We warmly welcome candidates of diverse origin, background, ability, age, sexual orientation, gender identity, and personality. Another fundamental value at State Street is active engagement with our communities around the world, both as a partner and a leader. You will have tools to help balance your professional and personal life, paid volunteer days, matching gift programs, and access to employee networks that help you stay connected to what matters to you.

State Street is an equal opportunity and affirmative action employer.