1+ months

Lead IT Auditor - P204303

Riverwoods, IL 60015
  • Job Code

At Discover, be part of a culture where diversity, teamwork and collaboration reign. Join a company that is just as employee-focused as it is on its customers and is consistently awarded for both. We're all about people, and our employees are why Discover is a great place to work. Be the reason we help millions of consumers build a brighter financial future and achieve yours along the way with a rewarding career.

Responsible for performing audit reviews. Performs client interviews, reviews business processes, identifies and assess controls, and communicates results with clients. Develops action plans.


The Internal Audit Lead Auditor uses operational and technical skills to support the DFS Internal Audit Department objectives. The Internal Audit Lead Auditor is assigned to a schedule of internal audit reviews where they will follow the DFS Internal Audit methodology, oversee the completion of the entire audit for assigned audit staff as clients' interviews, review of business processes, controls identification and assessment, testing of key controls, findings development and communication with clients to develop and follow up on action plans.

The audits and special reviews will be of the Direct Banking (Marketing, Operations, Consumer Banking and Credit Risk Management), Human Resources, Finance, Corporate Risk Management, Payment Services, IT General Controls, IT Network and Infrastructure, Models, Corporate Support, with an objective to improve controls and efficiencies of the activities reviewed.

General Internal Audit Requirements:

Audit Lifecycle: (Planning, fieldwork, reporting, post reporting, budgeting/resources)

  • Execute the following tasks with minimal oversight from the Supervisor or lead (when applicable):
    • Lead / In-Charge audits
    • Present findings to internal management and business unit in a logical and concise manner
    • Demonstrate efficiency and effectiveness of managing their own time with limited supervision to consistently meet deadlines and audit engagement objectives.
    • Possess an awareness of the how various aspects of an audit are related to the overall scope of the audit
    • Assist the Supervisor in defining the scope of the audit
    • Coordinate with integrated audit teams (IT, operational, compliance and financial auditors) to accomplish the audit objectives and provide complete coverage of the audit entity
    • Demonstrate an awareness of co-dependencies within the audit and the audit universe
  • As a Lead Auditor independently:
    • Attend and administrate opening, findings, and closing client meetings
    • Lead periodic meetings with internal audit management and the business units
    • Facilitate an understanding of the overall audit scope to the audit team
    • Understand how applications and related Information Technology (IT) General Controls support achievement of business processing objectives.
    • Provide assignments and direction to the staff throughout the audit project
    • Draft the findings, actions, and report (with the assistance of the audit staff draft the findings, actions and report)
    • Communicate status of audit and its findings to key clients. Work with clients to evaluate the adequacy of actions items to ensure they address the root cause
    • Develop staff on audits or educate team on area of expertise to improve the department skill set. (Define expectations with audit staff at the beginning of the audit. Provide leadership and guidance to team in area of expertise.)
    • Review staff audit work for completeness, effectiveness and accuracy.
    • Use knowledge of company/industry practices and processes to define key business risks, expected controls and to assess actual controls
    • Provide feedback to the audit supervisor on staff performance to be incorporated into the staff job evaluation
    • Interact effectively with IT, operational, compliance and financial auditors to ensure a coordinated effort in providing complete coverage of the audit entity.
    • Follow-up on assigned actions from the audit (status updates and verifications)
    • Experience with automated work paper system (Pentana) is a plus

Annual Planning: (Audit Universe, Risk Assessments)

  • Maintain up-to-date knowledge of business and profession

Advisory/Continuous Monitoring: (Management/Committee Meetings and Industry/Regulatory Changes)

  • Facilitate the verification processes for audit and regulatory findings

Strategic Thinking: (Thought leadership practices)

  • Demonstrate an ability to multitask multiple audits and other assignments at a time (audits, special projects, verifications, etc.)
  • Participate in special projects or other duties as assigned
  • Contribute to Department Initiatives to improve Internal Audit processes and assist the department in achieving its purpose and meeting its goal
  • Develop skill sets by meeting required training and obtaining advanced degrees and/or certification pursuant to department guidelines
  • Participate in Quality Assurance Reviews at least twice in a calendar year

Audit Area Specifics:

Risk Management

  • Ability to develop audit programs related to Enterprise Risk Management concepts including but not limited to risk appetite, governance and oversight, culture, reputation risk management, sales practice, fiduciary and asset risk management.

Informational Technology

  • Knowledge of COBOT 5.0, COSO, NIST Cybersecurity, or ISO27001/ISO27002 frameworks in essential. Knowledge of PCI DSS or FFIEC IT Exam Handbook is a plus.
  • Experience with the Software Development Life Cycle (SDLC), System implementation, Systems operations, System continuity, Change and problem management, Logical security and knowledge of related risks is highly preferred.
  • Ability to analyze IT environment to identify application, infrastructure, security risks and controls as they relate to the relevant business risks is essential.
  • Working knowledge of technology platforms (e.g. Windows, UNIX/Linux, or IBM Mainframe) and database environments (e.g. ORACLE, MS SQL, DB2, Teradata, or Hadoop) is preferred.
  • Knowledge of Cybersecurity aspects (e.g. Vulnerability management, Incidence Management, Penetration testing, Boundary defense, or Defense in depth) is essential.
  • Knowledge of networks (e.g. LAN / WAN), network protocols, and network devices (e.g. Routers, Switches, Firewalls, etc.) is preferred.
  • Knowledge of Data security, Data privacy, and Data loss prevention risks and mitigation techniques is helpful.
  • Knowledge of Encryption technologies, PIN Security, and Key Management is plus.
  • Openness to minimal travel requirement (5% - 10%) is helpful.


  • Build and maintain strong client relationships by demonstrating knowledge of the client's business environment, and provide audit insight on the company's strategic initiatives.
  • Demonstrate effective interpersonal skills
  • Understand, apply, and educate audit staff to identify and assess risks, design controls, and implement audit methodology.

Minimum Qualifications

At a minimum, here's what we need from you:

  • Bachelor's Degree in Applied Sciences, Engineering, Operations, Accounting, Finance, Business, Computer Science, Data Science, or related field
  • 2+ years of experience in Applied Sciences, Engineering, Operations, Accounting, Finance, Business, Computer Science, Data Science, or related field

Preferred Qualifications

If we had our say, we'd also look for:

  • 4+ years of experience in Applied Sciences, Engineering, Operations, Accounting, Finance, Business, Computer Science, Data Science, or related field
  • Practical experience in risk based auditing, compliance, risk management activities or regulatory examinations helpful
  • Working experience in the Financial Services, Banking, Credit cards, or Public accounting is preferred.
  • Experience in project management or agile methodologies is a plus.
  • CIA, CAMS, CRMC, CPA, CISA, or related certification

What are you waiting for? Apply today!

And by the way, while you're waiting to hear from us, don't forget to check out the great benefits Discover offers

Discover Financial Services is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, protected veteran status, among other things, or as a qualified individual with a disability.



  • Banking / Finance
Posted: 2019-06-30 Expires: 2019-09-05

Welcome to Discover
We strive to be the leading direct bank and payments services company. Our mission is to help people spend smarter, manage debt better, and save more to achieve a brighter financial future.

Why Work with Us?
You can make an impact. Whether it’s developing corporate strategy, innovating new services or supporting IT needs, every employee has the opportunity to be a vital part of our business and make a real difference in people’s lives. It’s the heart of what we do.


Employment Trends

Before you go...

Our free job seeker tools include alerts for new jobs, saving your favorites, optimized job matching, and more! Just enter your email below.

Share this job:

Lead IT Auditor - P204303

Riverwoods, IL 60015

Join us to start saving your Favorite Jobs!

Sign In Create Account
Powered ByCareerCast