Sr. Internal Auditor (IT), Internal Audit

Join our team - and take the next step in achieving a fulfilling career!

What We Do

At CardWorks, we aim to help people connect with possibility and opportunity using our financial servicing expertise. Building meaningful, long-term relationships with consumers, our employees, and our clients is what matters most.

Who We Are

CardWorks Servicing, LLC provides end-to end operational servicing functions for credit cards, secured cards, and installment loans.  We service consumer and small business loans across the credit spectrum and offers backup servicing and due diligence services to capital providers and trustees.

Merrick Bank is an FDIC-insured Utah Industrial Loan Bank.  Merrick operates three main business lines:  credit cards, recreational lending, and merchant services.

Carson Smithfield, LLC provides a variety of post-charge-off debt recovery services, including digital self-service, IVR, live agent, and external agency management.

Position Summary:

The Senior Internal Auditor – Information Technology is responsible for assisting the VP Internal Audit Manager and in performing specialized information technology audits across the Company. The Senior Internal Auditor – Information Technology is expected to maintain specialized technical expertise and to stay abreast of regulatory, industry, and other changes that affect the Company’s risk profile. The Senior Internal Auditor – Information Technology is expected to have a thorough understanding of audit methodologies and to develop audit workpapers in accordance with the Company’s Internal Audit Quality Assurance Improvement Program. 

Essential Functions:

• Assists the VP Internal Audit Manager in identifying information technology related risk and controls.
• Performs audit evaluations to provide reasonable assurance that information technology risk management, control, and governance systems are functioning as intended and will enable the Company to meets its information technology related objectives and goals.
• Ensures that audit objectives and testing results are adequately evaluated to conclude on the effectiveness of information technology internal controls and develop conclusions on residual risks.
• Prepares audit work papers in accordance with the Quality Assurance Improvement Program and ensures that sufficient evidence is documented to support related audit findings and conclusions.
• Reports risk management issues and information technology related internal control deficiencies via professionally written deliverables that are appropriate for all levels of management and governance.
• Provides support to the Company’s anti-fraud programs, including participation in fraud investigations and identification of information technology related fraud risks.
• Complies with the Institute of Internal Auditors (IIA) International Standards for the Professional Practice of Internal Auditing and the Internal Audit Code of Ethics.
• Attends requisite meetings in the absence or at the request of the VP Internal Audit Manager.
• Obtains management responses and performs follow up inquiry and transactional testing to confirm remediation of audit findings.
• Participates in training and development programs to develop and maintain audit, process, or Company subject matter expertise.
• Compliance with Laws & Regulations: 
• Responsible for complying with all of the Company’s internal control policies and procedures.
• Responsible for understanding and complying with all laws and regulations to which the Company is subject.
• Responsible for communicating problems in operations, noncompliance with the code of conduct, noncompliance with laws and regulations, policy violations, or illegal acts.

Education and Experience Qualifications:

• Bachelor’s Degree in accounting, information technology, or related field is required; Master’s Degree is preferred.
• Five (5) years audit experience in information technology, financial services, or public accounting is required.
• A minimum of one professional certification such as Certified Public Accountant (CPA), Certified Internal Auditor (CIA), Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), or Certified Fraud Examiner (CFE) is preferred.

Summary of Qualifications:

• Demonstrable knowledge of information technology related internal control best practices and the Committee of Sponsoring Organizations of the Treadway Commission Integrated Framework;
• Demonstrable knowledge of Federal Deposit Insurance Corporation Improvement Act requirements and/ Sarbanes-Oxley Act requirements
• Direct experience in performing information technology audits
• Demonstrable knowledge and experience in performing Information Technology General Computer Controls reviews, experience in System and Organizational Controls (SOC) review techniques a plus
• Demonstrable knowledge of privacy laws, Payment Card Industry Data Security Standards, Federal Financial Institutions Examinations Council Handbooks, National Institute of Standards and Technology Cyber Security Standards, and other information technology related industry best practices
• Demonstrable understanding of information technology infrastructure environments, such as Windows and Linux server environment, database architecture, Networking, Cloud security, etc.
• Experience in performing business application audits
• Excellent communication skills, both verbal and written
• A track record of delivering exceptional results and problem solving skills
• Excellent organizations skills to understand and set priorities and monitor progress towards goals

The salary range for this position, if located in NY Metro/NY State is $101,600 to $118,500. However, please note that the salary range will vary for other geographic areas.   

Our Employee Value Proposition

• Competitive Pay, including a Bonus Target or Variable Pay Incentive Program 
• Benefits Package -Medical, Dental, and Vision (plus much more) 
• 401(k) Plan with Company Match 
• Short- & Long-Term Disability 
• Wellness Programs 
• Group Life and AD&D Insurance 
• Paid Vacation, Sick Days and bank Holidays 
• Employee Engagement Activities including Employee Appreciation Day, DEI Employee Resource Groups, Corporate Social Responsibility, Service Recognition

We offer a total rewards package comprised of a competitive base rate of pay, variable pay incentive programs based on the role, and a comprehensive benefit suite.  Offered rates of pay are determined based on job-related knowledge, relevant experience, skills, certifications, and geographic location.

We are an equal opportunity employer, and we evaluate qualified applicants without regard to race, color, religion, sex, national origin, disability, veteran status or any other legally protected characteristic.  We will conduct a thorough background check for all hires in compliance with applicable.

Salary : $101,600 - $118,500