SOC1 Attestation Audit Manager
- Recruiter
- JP Morgan Chase
- Location
- India
- Salary
- Competitive salary
- Posted
- 12 May 2022
- Closes
- 03 Jun 2022
- Ref
- 210257878
- Approved employers
- Approved employer
- Job role
- Audit
- Experience level
- Manager
Job Description
Key Responsibilities:
The CTC Attestation Manager is an IT controls specialist with strong program management experience who uses these capabilities to manage the planning and execution of global attestation engagements (SOC1, SOC2, ISAE 3402, AT-C 205) supporting key business organizations, while meeting the demands of external clients of the firm, across multiple lines of business (LOBs). The role requires partnering with internal business owners and external auditors to identify appropriate form of reporting (e.g., SOC1, SSAE3402, AT-205, and ISAE 3000) to meet client and/or regulatory requirements, and taking the lead in report development, readiness and execution while ensuring quality standards are achieved in development and maintenance of reports which go out to thousands of the largest clients of the firm. Strong issue management capabilities are an essential element of the role. This includes the ability to rapidly analyze and respond to potential issues threatening audit outcomes, assess root causes of findings and effectiveness of proposed solutions, oversee remediation work streams and to drive timely and effective solutions while keeping management and other key stakeholders informed on status and potential concerns.
Requirements:
• 5+ years' equivalent experience dedicated to leading execution of IT or operations controls attestation engagements, including SOC1 and/or SOX, with a minimum of two years of manager level experience planning and executing IT controls audit as a practitioner with a "Big Four" or top IT Consulting firm
• Confidence and self-assurance in interactions with external auditors and ability to reach across a global-firm to engage appropriate management, set agendas, lead calls with senior management and drive actions to meet program objectives, demonstrating a strong sense of ownership, commitment to quality and attention to detail
• Ability to initiate and lead group discussions, problem solve to identify solutions to issues and deliver high quality results in an intensely deadline-driven environment
• Subject matter expertise in development and execution of control attestation reports (e.g., SOC1, SOC2, AT-C 205, etc.)
• Strong Excel skills
• Sense of ownership; ability to work with minimal supervision
About Us
JPMorgan Chase & Co., one of the oldest financial institutions, offers innovative financial solutions to millions of consumers, small businesses and many of the world's most prominent corporate, institutional and government clients under the J.P. Morgan and Chase brands. Our history spans over 200 years and today we are a leader in investment banking, consumer and small business banking, commercial banking, financial transaction processing and asset management.
We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law. In accordance with applicable law, we make reasonable accommodations for applicants' and employees' religious practices and beliefs, as well as any mental health or physical disability needs.
About the Team
The Cybersecurity & Technology Controls group at JPMorgan Chase aligns the firm's cybersecurity, access management, controls and resiliency teams. The group proactively and strategically partners with all lines of business and functions to enable them to design, adopt and integrate appropriate controls; deliver processes and solutions efficiently and consistently; and drive automation of controls. The group's number one priority is to enable the business by keeping the firm safe, stable and resilient.
High Risk Roles (HRR) are sensitive roles within the technology organization that require high assurance of the integrity of staff by virtue of 1) sensitive cybersecurity and technology functions they perform within systems or 2) information they receive regarding sensitive cybersecurity or technology matters. Users in these roles are subject to enhanced pre-hire screening which includes both criminal and credit background checks (as allowed by law). The enhanced screening will need to be successfully completed prior to commencing employment or assignment.
Key Responsibilities:
The CTC Attestation Manager is an IT controls specialist with strong program management experience who uses these capabilities to manage the planning and execution of global attestation engagements (SOC1, SOC2, ISAE 3402, AT-C 205) supporting key business organizations, while meeting the demands of external clients of the firm, across multiple lines of business (LOBs). The role requires partnering with internal business owners and external auditors to identify appropriate form of reporting (e.g., SOC1, SSAE3402, AT-205, and ISAE 3000) to meet client and/or regulatory requirements, and taking the lead in report development, readiness and execution while ensuring quality standards are achieved in development and maintenance of reports which go out to thousands of the largest clients of the firm. Strong issue management capabilities are an essential element of the role. This includes the ability to rapidly analyze and respond to potential issues threatening audit outcomes, assess root causes of findings and effectiveness of proposed solutions, oversee remediation work streams and to drive timely and effective solutions while keeping management and other key stakeholders informed on status and potential concerns.
Requirements:
• 5+ years' equivalent experience dedicated to leading execution of IT or operations controls attestation engagements, including SOC1 and/or SOX, with a minimum of two years of manager level experience planning and executing IT controls audit as a practitioner with a "Big Four" or top IT Consulting firm
• Confidence and self-assurance in interactions with external auditors and ability to reach across a global-firm to engage appropriate management, set agendas, lead calls with senior management and drive actions to meet program objectives, demonstrating a strong sense of ownership, commitment to quality and attention to detail
• Ability to initiate and lead group discussions, problem solve to identify solutions to issues and deliver high quality results in an intensely deadline-driven environment
• Subject matter expertise in development and execution of control attestation reports (e.g., SOC1, SOC2, AT-C 205, etc.)
• Strong Excel skills
• Sense of ownership; ability to work with minimal supervision
About Us
JPMorgan Chase & Co., one of the oldest financial institutions, offers innovative financial solutions to millions of consumers, small businesses and many of the world's most prominent corporate, institutional and government clients under the J.P. Morgan and Chase brands. Our history spans over 200 years and today we are a leader in investment banking, consumer and small business banking, commercial banking, financial transaction processing and asset management.
We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law. In accordance with applicable law, we make reasonable accommodations for applicants' and employees' religious practices and beliefs, as well as any mental health or physical disability needs.
About the Team
The Cybersecurity & Technology Controls group at JPMorgan Chase aligns the firm's cybersecurity, access management, controls and resiliency teams. The group proactively and strategically partners with all lines of business and functions to enable them to design, adopt and integrate appropriate controls; deliver processes and solutions efficiently and consistently; and drive automation of controls. The group's number one priority is to enable the business by keeping the firm safe, stable and resilient.
High Risk Roles (HRR) are sensitive roles within the technology organization that require high assurance of the integrity of staff by virtue of 1) sensitive cybersecurity and technology functions they perform within systems or 2) information they receive regarding sensitive cybersecurity or technology matters. Users in these roles are subject to enhanced pre-hire screening which includes both criminal and credit background checks (as allowed by law). The enhanced screening will need to be successfully completed prior to commencing employment or assignment.
Similar jobs
-
New
-
New
-
New