Senior Business Control Specialist - Assessments and Exams
Jersey City
**Job Description:**
This role is part of the Global Technology Audit, Regulatory and External Assessment Engagement team and is responsible for executing key control activities that support SOX, Audits, Regulatory, Compliance and Third-Party Assessments. This role is responsible for the coordination, evaluation, and management of SOX and SOC internal and external Assessment activities applying both technical and business knowledge to determine end to end requirements for each SOX/SOC testing
assessment. The strongest candidates will have great partnership and communication skills, be well organized and the ability to synthesize details into meaningful recommendations, conclusions, and management reporting.
+ Work closely with lines of business, Global Information Security, TCOR, software/hardware developers and technicians, and vendors to coordinate and manage SOX/SOX Assessments from planning phase through testing and exception identification phases.
+ Partners with Subject Matter Experts to develop and assemble responses for assessment enquiries to ensure accuracy in all requests for documentation and evidence.
+ Facilitates and liaises with all stakeholders to provide appropriate responses. Uses risk knowledge to address gap or exception questions.
+ Ensures strong, consistent execution of the Assessment process. Drives partnership and participation with stakeholders, business partners and technical organizations.
+ Provides BAU, management and ad hoc reporting of program activities and outcomes.
**Required Skills & Abilities:**
+ 5+ years of internal control, audit, risk or compliance experience over for a large and complex financial services organization.
+ Strong understanding of the components and application of internal control frameworks including the requirements under SOX and COSO and/or relative industry risk & control framework understanding.
+ Strong relationship management skills to navigate the complexities of aligning stakeholders, building consensus and resolving conflicts in a large, distributed organization; proven ability to influence peers/stakeholders.
+ Proven ability to manage multiple and often competing priorities in a global environment.
+ Ability to decompose complex issues and drive timely decisions, knowing when to engage others for additional input, and when to act independently.
+ Ability to communicate complex ideas in a clear and concise manner, shaping the opinions and actions of key stakeholders and gaining their trust.
+ Detail oriented with an ability to review documentation for accuracy and report on the status of risk reviews.
+ Strong critical thinking skills with ability to objectively analyze and evaluate questions, assumptions, ideas, arguments, findings and determine whether they represent a full picture or need further investigation.
+ Strong knowledge of Technology infrastructure and ability to interpret standards and inquiries to the right technical component i.e. application, database, mainframe, midrange, operating system etc.
+ Knowledge and understanding of SharePoint sites, SharePoint lists and document libraries, subsite, and permissions.
**Desired Skills & Abilities:**
+ Familiarity with the Global Technology business and organization.
+ Demonstrated strong project management skills
+ CISA, CGEIT, CISM , CRISC, CISP, or other related certification strongly preferred
**Job Band:**
H5
**Shift:**
1st shift (United States of America)
**Hours Per Week:**
40
**Weekly Schedule:**
**Referral Bonus Amount:**
0
**Job Description:**
This role is part of the Global Technology Audit, Regulatory and External Assessment Engagement team and is responsible for executing key control activities that support SOX, Audits, Regulatory, Compliance and Third-Party Assessments. This role is responsible for the coordination, evaluation, and management of SOX and SOC internal and external Assessment activities applying both technical and business knowledge to determine end to end requirements for each SOX/SOC testing
assessment. The strongest candidates will have great partnership and communication skills, be well organized and the ability to synthesize details into meaningful recommendations, conclusions, and management reporting.
+ Work closely with lines of business, Global Information Security, TCOR, software/hardware developers and technicians, and vendors to coordinate and manage SOX/SOX Assessments from planning phase through testing and exception identification phases.
+ Partners with Subject Matter Experts to develop and assemble responses for assessment enquiries to ensure accuracy in all requests for documentation and evidence.
+ Facilitates and liaises with all stakeholders to provide appropriate responses. Uses risk knowledge to address gap or exception questions.
+ Ensures strong, consistent execution of the Assessment process. Drives partnership and participation with stakeholders, business partners and technical organizations.
+ Provides BAU, management and ad hoc reporting of program activities and outcomes.
**Required Skills & Abilities:**
+ 5+ years of internal control, audit, risk or compliance experience over for a large and complex financial services organization.
+ Strong understanding of the components and application of internal control frameworks including the requirements under SOX and COSO and/or relative industry risk & control framework understanding.
+ Strong relationship management skills to navigate the complexities of aligning stakeholders, building consensus and resolving conflicts in a large, distributed organization; proven ability to influence peers/stakeholders.
+ Proven ability to manage multiple and often competing priorities in a global environment.
+ Ability to decompose complex issues and drive timely decisions, knowing when to engage others for additional input, and when to act independently.
+ Ability to communicate complex ideas in a clear and concise manner, shaping the opinions and actions of key stakeholders and gaining their trust.
+ Detail oriented with an ability to review documentation for accuracy and report on the status of risk reviews.
+ Strong critical thinking skills with ability to objectively analyze and evaluate questions, assumptions, ideas, arguments, findings and determine whether they represent a full picture or need further investigation.
+ Strong knowledge of Technology infrastructure and ability to interpret standards and inquiries to the right technical component i.e. application, database, mainframe, midrange, operating system etc.
+ Knowledge and understanding of SharePoint sites, SharePoint lists and document libraries, subsite, and permissions.
**Desired Skills & Abilities:**
+ Familiarity with the Global Technology business and organization.
+ Demonstrated strong project management skills
+ CISA, CGEIT, CISM , CRISC, CISP, or other related certification strongly preferred
**Shift:**
1st shift (United States of America)
**Hours Per Week:**
40
Learn more about this role
Full time
JR-22057670
Band: H5
Manages People: No
Travel: No
Manager:
Talent Acquisition Contact:
Joseph Murray
Referral Bonus:
0
Bank of America and its affiliates consider for employment and hire qualified candidates without regard to race, religious creed, religion, color, sex, sexual orientation, genetic information, gender, gender identity, gender expression, age, national origin, ancestry, citizenship, protected veteran or disability status or any factor prohibited by law, and as such affirms in policy and practice to support and promote the concept of equal employment opportunity and affirmative action, in accordance with all applicable federal, state, provincial and municipal laws. The company also prohibits discrimination on other bases such as medical condition, marital status or any other factor that is irrelevant to the performance of our teammates.
To view the "EEO is the Law" poster, CLICK HERE (https://www.dol.gov/ofccp/regs/compliance/posters/pdf/eeopost.pdf) .
To view the "EEO is the Law" Supplement, CLICK HERE (https://www.dol.gov/ofccp/regs/compliance/posters/pdf/OFCCP\_EEO\_Supplement\_Final\_JRF\_QA\_508c.pdf) .
Bank of America aims to create a workplace free from the dangers and resulting consequences of illegal and illicit drug use and alcohol abuse. Our Drug-Free Workplace and Alcohol Policy (Policy) establishes requirements to prevent the presence or use of illegal or illicit drugs or unauthorized alcohol on Bank of America premises and to provide a safe work environment.
To view Bank of Americas Drug-free workplace and alcohol policy, CLICK HERE .
