Senior Auditor - Privacy COE team - Internal Audit Group Financial Crimes & Privacy

American Express
Jun 21, 2024
Jun 22, 2024
Staff, Senior
Work Mode
Full Time
Organization Type
You Lead the Way. We've Got Your Back.
With the right backing, people and businesses have the power to progress in incredible ways. When you join Team Amex, you become part of a global and diverse community of colleagues with an unwavering commitment to back our customers, communities and each other. Here, you'll learn and grow as we help you create a career journey that's unique and meaningful to you with benefits, programs, and flexibility that support you personally and professionally.
At American Express, you'll be recognized for your contributions, leadership, and impact-every colleague has the opportunity to share in the company's success. Together, we'll win as a team, striving to uphold our company values and powerful backing promise to provide the world's best customer experience every day. And we'll do it with the utmost integrity, and in an environment where everyone is seen, heard and feels like they belong.
Join Team Amex and let's lead the way together.
The Internal Audit Group (IAG):
IAG is a worldwide function with 300 team members and offices across nine countries. Our assurance and risk professionals have diverse backgrounds including internal controls, consumer compliance, privacy, financial crimes compliance, technology, operational risk, financial accounting, data analytics, banking operations, fraud & investigations, among others. Most IAG team members hold at least one professional certification. Our audit teams align to key risk areas and business units to ensure IAG can provide comprehensive and risk-based audit coverage. In addition, IAG has a Professional Practices group responsible for managing audit operations, quality, and standards; regulatory relations; reporting; training and professional development; and key internal capabilities and technologies.
We seek data and technology literate risk & assurance professionals to deliver impactful audit conclusions and insight. American Express' IAG has reinvented our audit process and is leading the financial services industry with our Audit NextGen, Data-Driven Continuous Auditing, and Auditor of the Future initiatives. Each uniquely support our Winning Aspiration to be a world class internal audit function that:
- Provides data-driven and technology-enabled assurance
- Delivers timely risk insights that are business-aware and forward-looking
- Supports our colleagues with experiences that prepare them to be enterprise leaders
IAG's innovative Data-Driven Continuous Auditing approach has led to patent-pending technology assets over our uniquely developed audit methodology and technology enablers.
Collectively, IAG's strategic initiatives, combined with our greatest asset - our people - enable IAG to utilize advanced data analysis capabilities, provide greater and continuous assurance, and help ensure quality products and services are provided to American Express customers. We are looking for those who share our mission and aspirations and are passionate about the use of data and technology in a collaborative, people-focused environment.
Where is this role located:
This Senior Auditor role is within the IAG Privacy Centre of Excellence (COE) team, which is part of the broader IAG Financial Crimes & Privacy audit team. This privacy-focused role is based in India and will organizationally report into the Director & Team Leader of the IAG Privacy COE team, located in the United Kingdom.
Although the role is based in India, it will involve working with fellow IAG colleagues and client stakeholders located in countries globally. The role will involve heightened privacy focus/specialism regarding the Asia-Pacific region, whilst also supporting certain global, US, and international activities. The role may also involve executing some limited audit work regarding financial crimes compliance related areas.
Key Responsibilities:
Participate as a key member of the IAG Privacy COE team, including providing privacy subject matter expertise across core/lead, integrated, and privacy oversight/advisory audit engagements and Special Reviews, including:
- Own audit tasks across all stages of the audit lifecycle working on concurrent core and integrated audit projects, across multiple business areas, for different teams and audit team leaders.
- Communicate audit objectives, risks, and findings articulately and with impact to individuals at various levels of IAG and business management.
- Participate in walkthroughs with relevant stakeholders to understand, credibly challenge, assess, and document relevant privacy related processes, risks, and controls.
- Execute testing of process and control design and operating effectiveness across global, US, and international market audits, across first and second line of-defense business functions, with particular focus upon privacy risk domains.
- Efficiently manage routine IAG-internal & client status meetings, audit requests, and other administrative tasks.
- Perform validations of internal audit issues and/or regulatory issues / concerns and assist in performing root cause analysis, etc.
- Assist in documenting risk-based evaluation of audit observations and findings, and validate corrective actions taken by management to appropriately and sustainable address findings / audit observations.
- Develop familiarity of privacy risks within American Express, across all lines-of-business globally, and across both 1st and 2nd lines-of-defense functions.
- Maintain audit proficiency through ongoing professional development including data literacy skills.
- Support IAG Privacy Risk Category Owner (RCO) activities, including effective and efficient execution & oversight of IAG's Privacy Strategy and & Standard Audit Program/Procedures across the IAG department, Privacy Business Monitoring Program, and other Privacy & Financial Crime team strategic initiatives.
- As a self-starter, leverage a passion for continuous innovation to drive organizational improvements and impacts. Work effectively on unstructured tasks to provide structured output.
- Utilize department and company tools in a proficient manner.
- Support with developing & documenting ideas for analytical control testing to continually expand the breadth and depth of audit coverage and enhance audit efficiency & quality. Support with developing and monitoring an evolving portfolio of privacy related audit analytics, assess analytic results, use the analytic data to tell the potential business story, and work with audit & business colleagues to validate that story.
- Maintain Internal Audit and Privacy Subject Matter Expert competency through ongoing professional development.
Required Qualifications & Experience:
- 2 years of relevant experience in audit and data privacy & protection (ideally within financial services, banking, or card-products industries)
- Strong understanding of existing & evolving privacy laws, regulations, and regulatory guidance.
- Bachelor of Art/Science, or equivalent degree;
- Demonstrated experience and competency in the assessment of risks & controls;
- Data-driven mindset and experience in the manipulation, assessment, interpretation, and presentation of data to support a conclusion;
- Demonstrated integrity, innovation, teamwork, and excellence;
- Business process experience in the financial services industry, including an understanding of related products, services, features, economics, best practices, and key regulations.
Preferred/desirable qualifications & experience:
- Attained or currently working towards (or willing to work towards) any of the following certifications related to privacy:
- Certified Information Privacy Professional (CIPP) (US / Europe / Asia / Canada)
- Certified Information Privacy Manager (CIPM)
- Certified Information Privacy Technologist (CIPT)
- Certified Artificial Intelligence Governance Professional (AIGP)
- Background in compliance, cybersecurity, information systems, data analytics, and/or information technology
- Big-4 and/or large financial institution experience
- Knowledge & experience in the application of control theory and professional auditing practices & methodology, including the audit lifecycle.
- Aptitude for working with data, interpreting results, business intelligence and analytic best practices. Ability to break-down complex and unstructured problems into components, solve them using data analysis, process knowledge and risk/control knowledge, and communicate data analysis, issues & control recommendations with transparency & integrity.
- Analytics experience in internal audit, risk management, and/or financial services, including experience with data analytic tools, data visualization, key risk indicators (KRIs), key performance indicators (KPIs), and scorecards / dashboards.
- Strong written & verbal communication skills that deliver quality, actionable and beneficial feedback to management on potential control issues & solutions to close gaps/deficiencies.
- Ability to effectively integrate business, operational, technological, data, and financial components in audit work.
- Effectively works independently, within a team and across teams in a fast-paced environment to drive business results, utilizing related project management skills, employing creative & critical thinking, objective/credible challenge, and the ability to work on competing priorities.
- Other relevant professional certifications (e.g. CIA, CISA, CPA, CISM, CAP, other technology-focused certification)
We back our colleagues and their loved ones with benefits and programs that support their holistic well-being. That means we prioritize their physical, financial, and mental health through each stage of life. Benefits include:
- Competitive base salaries
- Bonus incentives
- Support for financial-well-being and retirement
- Comprehensive medical, dental, vision, life insurance, and disability benefits (depending on location)
- Flexible working model with hybrid, onsite or virtual arrangements depending on role and business need
- Generous paid parental leave policies (depending on your location)
- Free access to global on-site wellness centers staffed with nurses and doctors (depending on location)
- Free and confidential counseling support through our Healthy Minds program
- Career development and training opportunities
American Express is an equal opportunity employer and makes employment decisions without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, veteran status, disability status, age, or any other status protected by law.
Offer of employment with American Express is conditioned upon the successful completion of a background verification check, subject to applicable laws and regulations.
Job: Internal Audit
Primary Location: India-Haryana-Gurgaon
Schedule Full-time
Req ID: 24006439