|IT Advisory Services Associate II or Senior Associate||Weaver||Permanent||Non-Management||Approved||7/31/2019|
We are looking to add an Associate II or Senior Associate to our IT Advisory Services Practice, who has PCI experience in addition to other technology controls experience. A QSA and/or ISA certification is preferred. This position is primarily responsible for execution of various engagement objectives within assigned areas and assists where necessary to complete the overall engagement. This requires the ability to learn and understand information systems and related internal control theory and basic auditing concepts. The individual should have a basic understanding of the system development life cycle (design, development, testing, production and implementation) and various computing environments.
|Sr. Staff - Technology Controls Auditor||Charles Schwab||Permanent||Non-Management||Approved||9/30/2019|
The Technology Risk and Compliance (TRAC) Technology Control Validation (TCT) Team is responsible for providing ongoing testing of Schwab Cybersecurity controls, decentralized application access management controls, validating issue closure for selected findings and remediation plans, and identifying and developing automated and self-testing efficiencies.
Reporting to the Senior Manager of the TRAC Technology Control Testing (TCT) Team, the successful Senior Staff of the TCT Team will be responsible for supporting a technology risk-based testing and assessment program intended to evaluate risks and internal controls across the Schwab environment. The Senior Staffhas the responsibility for testing internal controls to identify control gaps, reduce risk, advance audit readiness objectives, and promote adherence to Schwab and STS policies and standards, regulatory requirements, as well as industry standard common control frameworks. The Senior Staff of the TCT Team will work closely with Information Security Risk Management (ISRM), Operational Risk Management (ORM), and other control groups on the coordination and execution of the SCS Risk and Control Assessment program to identify and leverage efficiencies and reduce audit and testing strain on STS staff.
|IAM Controls Engineering and Process Improvement Analyst||Charles Schwab||Permanent||Non-Management||Approved||7/31/2019|
Processes and responsibilities will include:
Design and execute evaluations of application, database, and server access-based control portfolio.
Assesses control compliance for recently integrated applications.
Use data analytics to scale control assessments and minimize impact on control owners and performers.
Partner with control performers to enhance access-related control design.
Identify themes, trends, and emerging risks for escalation and communication to management.
Consult with engineering teams regarding access risks related to emerging technologies and processes (e.g. RPA, Cloud, DevOps).
|Senior Strategic Risk Management Analyst||Federal Reserve Bank of Dallas||Permanent||Non-Management||Approved||8/1/2019|
The Federal Reserve Bank of Dallas believes in the diversity of our people, ideas and experiences, and we are committed to building an inclusive culture that represents the communities we serve.
As part of the nation’s central bank, the Federal Reserve Bank of Dallas is committed to strengthening the economy and our communities. At the Fed, you have the opportunity to become part of an important public service institution whose work touches lives across the globe. It’s a big job, and that’s why we need talented, results-driven professionals who care about making a difference.
The Sr. Strategic Risk Management Analyst acts as a resource to the Financial Management department and other business areas regarding best practices related to enterprise risk and COSO compliance. The Sr. Strategic Risk Management Analyst will facilitate, report, and monitor on enterprise risk and fraud assessments to various business areas and senior management. The successful candidate will collaborate with other departments in identifying, assessing, monitoring and reporting on organizational risk. This person will assist in the design and delivery of educational, training, or other materials across the lines of defense, aids the external auditor throughout the audit process, and supports other key initiatives within the ERM group or other risk management roles as needed.
|IT Controls Assurance Analyst II||GM Financial||Permanent||Non-Management||Approved||8/30/2019|
1-2 years IT Audit
Access, Change Management, IT Operations