Senior IT Internal Auditor

Internal Audit Nashville, Tennessee


Position Summary:

Position conducts IT governance, infrastructure & support, integrated business process, and application audits for various lines of business/functional areas within the bank. Responsibilities include ensuring that execution of all audit activities in planning, fieldwork, reporting and wrap-up phases is conducted in accordance with established standards. Candidate must be familiar with a variety of banking concepts, practices, and procedures and must rely on extensive experience and judgment to plan and accomplish goals. In addition, positive interaction with management and staff, based on mutual respect, is necessary to ensure that appropriate controls, procedures, and policies are in place and properly followed.

Essential Duties and Responsibilities:

  • Ensure execution of all audit activities in planning, testing, reporting and wrap up phases are in compliance with audit department, regulatory, International Standards for the Professional Practice of Internal Auditing, and applicable IT audit governance standards.
  • Assume a lead role in FDICIA/SOX compliance process as it relates to IT General Controls, including oversight and coordination of any co-sourcing arrangements.
  • Develop and lead IT audit risk assessment process, determine IT audit priorities, scope, and objectives, execute IT audit work programs, and prepare deliverables of audit work.
  • Coordinate with other audit team members to effectively perform integrated audits.
  • Lead audit team in documenting business and IT management processes related to area being audited.
  • Execute testing of controls to assess operational effectiveness in managing risk.
  • Use knowledge of risk/control concepts & industry trends to identify control recommendations/process improvements.
  • Prepare and/or review audit work papers documenting work performed and results/conclusions.
  • Prepare audit report draft ensuring that all areas of audit process and results has been addressed.
  • Communicate information to management through meetings, presentations, internal audit reports, and/or other means.
  • Establish, foster and maintain working relationships with peers and supervisory management within business line and cross-functional lines to support an effective workflow, continuous communication and value.
  • Assist in identification and monitoring of risks and other potential exposures. Assist in design, maintenance and execution of continuous monitoring programs that effectively assesses changing risk and impact on internal controls and planned audit activities.
  • Develop line of business and industry knowledge base to keep current on existing and emerging issues; apply this knowledge for benefit of bank’s risk-based audit program.
  • Analyze to identify root cause of issues. Provide input for developing recommendations and action plans to eliminate or mitigate observed risks.
  • Assume a proactive, relationship-driven role around implementation/conversion of major new software conversions/installations.
  • Participate in any due diligence teams or other efforts as needed.
  • Perform other tasks as assigned.


Education and/or Experience – Required

  • Bachelor's Degree required; Computer Science or Management Information Systems
  • 4+ years of information technology audit experience
  • Certified Information Systems Auditor (CISA) required; at a minimum, candidate should be pursuing CISA certification
  • Certified Internal Auditor (CIA) required, or pursing certification


Education and/or Experience – Preferred
  • Certified Information Systems Security Professional (CISSP) preferred
  • Certified Public Accountant (CPA) preferred
  • Previous IT Audit experience in banking or financial industry preferred

Other Skills and Abilities

  • Must be experienced in performing audits within a multi-platform, networked Experience in auditing Financial Services/Banking applications and business processes is preferred.
  • Have a distinct basic knowledge of all aspects of the bank’s operating procedures and
  • Have flexibility in adjusting to
  • Exercise mature judgment, integrity, and skill in personal relationships with officers and
  • Advanced knowledge of Excel, Word and ability to learn/apply auditing related software


FirstBank does not accept unsolicited resumes from agencies and staffing firms. Recruitment agencies and consultants may not submit resumes directly to managers. FirstBank will not pay fees to any third-party agency or company that does not have a signed agreement as an approved vendor. FirstBank in an Equal Opportunity Employer, including disability.