Overview:

Accume Partners is a trusted risk assurance and advisory leader and innovator in delivering integrated solutions to our clients in highly regulated industries. Our firm has strong roots in providing internal audit, regulatory compliance, and risk management services to various sectors in the financial services industry. A few years ago, Accume Partners has added to those services with extensive Cybersecurity and Technology Compliance capabilities. As the level of regulatory and business complexity has surged, so has the need for specialized knowledge and focus. We have organized our firm to achieve that goal providing our clients with deep knowledge, expertise and approaches in the following areas: • Internal Audit • Regulatory Compliance • Technology Risk Management • Dedicated Cybersecurity Practice and Toolset • Incident Response Planning and Cyber-Forensic Team • FFIEC Compliance Software (Risk Director) Through these key areas of focus, we are able to stay in front of change, bring balanced perspectives and the specialized knowledge demanded by today’s banks and financial institutions. That is why our clients view us as the partner of choice, a partner that is truly different from the others. Partnership Matters.

Having the best technical expertise or the best service approach is not enough. We need the best people to complete the equation...people who can share their knowledge and grow with our clients. Accume Partners was founded on a belief in, and a commitment to, its people. The development, advancement and individual success of our talented professionals is vital to our future. We invest in you to ensure our professionals receive the training and mentoring necessary for your career growth. Our success is built on yours.

General Responsibilities:

• Performing IT and integrated audits by evaluating applications, system operations, and supporting infrastructure processing, controls, data storage and security procedures


• Conducting reviews of processes, policies, procedures, security and configuration controls of existing client systems, as well as proposed controls of new systems


• Performing technology risk assessments and reviewing, documenting, evaluating and testing general computer controls including access controls, change management, security, backup and operations controls, in a wide range of computing environments (e.g., mid-range, client/server and mainframes), for Service Organization Control (SOC) engagements, internal audit projects, financial audit support and Sarbanes-Oxley 404 assessments


• Performing annual IT audit risk assessments, using firm’s methodology, for a variety of engagements


• Ensuring high quality of audit and SOX work that meets IIA standards and industry regulatory guidelines


• Identifying risk, controls and gaps within a process or systems and reviewing findings and managements’ responses


• Review documentation for all stages of the audit, ensuring complete and accurate audit results as well as compliance with firm standards


• Identify risks, controls and gaps within a process or system


• Conduct follow-up work, as necessary, to evaluate corrective action taken by management to resolve previous IT Audit observations and ensure compliance with policies, laws and regulations


• Ensuring delivery of clear and concise reports and other deliverables to clients and various departments


• Validating corrective actions to address findings and recommendations in various IT internal audits and regulatory examination reports for clients


• Preparing workpapers, schedules and summaries documenting audit evidence, conclusions and finding reached

Qualifications:

• Minimum 3 years of IT Audit experience, preferably in public accounting/professional services environment


• Bachelor’s degree in Information Systems, Computer Science, or related field; or equivalent education


• Prior experience working in Financial Services, a plus


• Experience performing Windows, UNIX, network, web database and technical audits.


• 3+ years' experience in IT Audit, IT Security, Information Risk Management, IT Governance or other IT Compliance related work.


• Experience performing IT risk assessments and controls reviews and recommending, designing and advising on applicable IT controls


• Solid understanding of relevant regulations and industry standards (e.g., SSAE 16/SOC, FFIEC, SOX, COSO, COBIT, ITIL, ISO27001, PCI, HIPAA and GLBA) and best practices and methodologies to address these requirement


• Experience with Banking systems, Oracle, or PeopleSoft preferred


• Ability to multi-task and manage multiple audits or engagements


• Ability to interpret the impact and requirements of new laws and regulations


• Strong verbal, written, interpersonal, and speaking skills


• Professional certification such as CISA, CISSP, or CIA is preferred