At Northwestern Mutual, we are strong, innovative and growing. We invest in our people. We care and make a positive difference.
We're strong and growing. In a company with such a long and storied history, this may be the most exciting and important time to be a part of Northwestern Mutual. We're strong, innovative and growing.
We invest in our people. We provide opportunities for employees to grow themselves, their career and in turn, our business.
We care. We make a positive difference in our communities. Nationally, thousands have benefitted from our support of research and programs to fight childhood cancer. Each year, our Foundation, employees and financial representatives donate time, talent and financial support to causes they're passionate about.
The IT Audit Sr. Specialist will be responsible for executing IT and cybersecurity assurance (audit) and advisory reviews encompassing a wide range of technologies in a dynamic and fast-paced environment.
Primary Duties & Responsibilities:
Function as a member of the information technology & cybersecurity audit team, both as an individual contributor and in team environments where collaboration and adaptability are key.
Responsible for conducting assurance and advisory reviews that assess the design and effectiveness of controls relating to information technology and cybersecurity, including on-prem and cloud environments (AWS), to identify control gaps and process improvement opportunities, and to ensure compliance with internal standards aligning with NIST 800-53 and the NIST Cybersecurity Framework (CSF).
Conducts detailed risk analysis, identifies relevant controls, and assists in building out audit programs for areas under review.
Performs walkthroughs, conducts audit testing, and assesses the effectiveness of controls based on the results of testing.
Documents the results of testing, communicates findings internally and to auditees, and makes recommendations for finding risk ranking and steps needed for resolution.
Uses analytic technologies to deliver increased efficiency and deeper insights on risk assurance.
Remains current on cybersecurity auditing practices, emerging cyber threats, industry regulatory changes, and internal company policy and process changes.
Opportunity to participate in annual paid training.
Knowledge, Skills, Abilities:
Bachelor's degree in MIS, Information Technology, Accounting, Finance, or another relevant field required.
3+ years of technology & cyber audit experience with a professional services firm, an internal audit group, or similar environment.
Strong written and verbal communication skills with the ability to build relationships effectively at all levels within and outside the organization.
Understanding of IT audit standards and frameworks (e.g., COBIT, ISO/IEC 27002, NIST) and data security and privacy regulations (e.g., CCPA, HIPAA).
Interest in, and ability to learn new technologies quickly.
Ability to audit information technology and related processes such as applications, infrastructure, cloud-based environments, Active Directory, backup & recovery, mobile technologies, remote access, storage, operating systems, virtualization services, etc.
Self-motivated with excellent project management and organization skills; ability to multitask.
Able to communicate confidently with challenging stakeholders.
Demonstrated knowledge of the Financial Services industry regulatory environment is a plus.
Relevant professional certification (e.g., CISA, CIPP, CISSP, CGEIT, CISM, CRISC, CIA, CPA) or the desire to actively work towards one preferred.
General understanding of Model Audit Rule, SOX, or general controls; direct experience preferred.
Great pay package, 401K, Company sponsored retirement plan, Educational assistance, Performance based incentive pay, Medical, dental and vision insurance, Parental leave, Caregiver time off….and more
Pay Range - Start:
Pay Range - End:
Northwestern Mutual pays on a geographic-specific salary structure and placement in the salary range for this position will be determined by a number of factors including the skills, education, training, credentials and experience of the candidate; the scope, complexity as well as the cost of labor in the market; and other conditions of employment. At Northwestern Mutual, it is not typical for an individual to be hired at or near the top of the range for their role and compensation decisions are dependent on the facts and circumstances of each case. Please note that the salary range listed in the posting is the standard pay structure. Positions in certain locations (such as California) may provide an increase on the standard pay structure based on the location. Please click here for additional information relating to location-based pay structures.
Grow your career with a best-in-class company that puts our client’s interests at the center of all we do. Get started now!
We are an equal opportunity/affirmative action employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, gender identity or expression, sexual orientation, national origin, disability, age or status as a protected veteran, or any other characteristic protected by law.
If you work or would be working in California, Colorado, New York City, Washington or outside of a Corporate location, please click here for information pertaining to compensation and benefits.
FIND YOUR FUTURE
We’re excited about the potential people bring to Northwestern Mutual. You can grow your career here while enjoying first-class perks, benefits, and commitment to diversity and inclusion.
Flexible work schedules
Employee resource groups