Director, IT Audit - job 3 of 5

Visa is a world leader in payments and technology, with over 259 billion payments transactions flowing safely between consumers, merchants, financial institutions, and government entities in more than 200 countries and territories each year. Our mission is to connect the world through the most innovative, convenient, reliable, and secure payments network, enabling individuals, businesses, and economies to thrive while driven by a common purpose – to uplift everyone, everywhere by being the best way to pay and be paid.

Make an impact with a purpose-driven industry leader. Join us today and experience Life at Visa.

The mission of Visa’s Internal Audit team is to enhance and protect Visa’s organizational value by providing risk-based and objective assurance, advice and insight on the state of Visa’s risk and control environment. The Director - IT Audit will manage and execute aspects of the internal annual plan. Responsibilities include: 

• Ensuring high professional standards as set forth in Internal Audit’s Charter and IIA Professional Standards. 

• Lead engagement planning and scoping activities, working directly with senior client leaders. 

• Oversee the execution of all phases of the audit, supervising a team of up to six multi-disciplined audit (and co-sourced) professionals. 

• Exhibit soundness of judgment and accuracy in all work. 

• Demonstrate ability to understand and train others in the universe of business/technical risks and in the evaluation of the adequacy of management’s control design and effectiveness of control activities in accordance with the COSO framework. 

Essential Functions: 

• Maintain business relationships with appropriate levels of IT management to ensure that Audit is aware of changes in business activities and objectives, and a necessary Audit response is developed. 

• Possess outstanding written and oral communication skills and demonstrate these skills during the audit process to the appropriate level of Visa and Audit management. Ideas should be expressed clearly and concisely. 

• Promote new ideas and new ways of executing projects and internal infrastructure enhancements. Demonstrate commitment to Visa’s and Internal Audit’s strategic vision, be a self-starter, and promote project ownership and responsibility for actions. 

• Interact with Audit project team members in working towards Departmental goals. Demonstrate ability to resolve team conflicts and bring groups together to enhance project results through group planning, feedback and development skills. 

• Maintain a strong knowledge of overall business issues. Understand Company structure and functional responsibility. Assess efficiency and effectiveness of a business unit (during a project) and align with Visa-wide strategy and objectives. 

• Interact with the senior technology client leaders and the Audit Leadership Team to offer consultation and ensure quality control of Audit Department practices. 

• Coordinate and lead the execution of selected complex projects in areas of specialization and expertise. 

• Provide ongoing coaching to Audit professionals of various levels and experience. 

• Prepare performance evaluations for auditors. 

• Prepare/approve the audit scope, work program, and testing plan for each IT audit assignment. 

• During each audit, provide day-to-day and on-site support to ensure quality of IT Audit services provided: 

• Provide direction to IT auditors to ensure that audits are performed in accordance with department and professional standards. 

• Review audit work papers. 

• Review draft audit findings, and ensure issues are appropriately vetted and constructed given the circumstances. 

• Provide reports to client managers on the effectiveness of their business unit's internal control structure along with recommendations that improve the effectiveness and/or efficiency of a control or process. 

• Evaluate the adequacy and timeliness of management's response and the corrective action taken on all significant weaknesses noted in the reports. 

• Coordinate with other risk management functions and Independent Public Accountants to minimize duplication of effort and to ensure that issues raised as a result of their reviews are appropriately addressed 

For Special Projects, as assigned: 

• Participate in activities related to systems development, new products, mergers and acquisitions, and analyze new policies to ensure that control considerations are evaluated in the early stages of these activities. 

• Provide control consulting services to management to assist in redesign efforts that improve the control environment. 

• Enhance Audit's policies, procedures and methodologies to improve Audit's effectiveness in achieving its Charter. 

This is a hybrid position. Expectation of days in office will be confirmed by your hiring manager.

Basic Qualifications:

10 years of work experience with a Bachelor’s Degree or at least 8 years of work experience with an Advanced Degree (e.g. Masters/MBA/JD/MD) or at least 3 years of work experience with a PhD

Preferred Qualifications:
12 or more years of work experience with a Bachelor’s Degree or 8-10 years of experience with an Advanced Degree (e.g. Masters, MBA, JD, MD) or 6+ years of work experience with a PhD
Bachelor's degree in accounting, computer science, management information systems, or related field.
10 years of internal audit experience, preferably with a large financial institution, or Big 4 assurance experience.
Demonstrated experience managing audits within a complex operational and regulatory environment that includes mainframe, distributed and network technology platforms.
Demonstrated ability to plan and execute IT audits focusing on General Computer Controls, including Information Security, Information System Operations, Vendor Management, Business Continuity, Networks, Database, System Software, Hardware, and Application Development controls.
Strong supervisory and time management skills.
Experience in managing a staff of diverse professionals.
Experience evaluating controls associated with complex business processes.
Excellent written and oral communication skills.
CIA, CPA, CISA, CISSP, Open FAIR, or other relevant professional certification highly desired.
Extensive information security and network control audit knowledge, and experience with network footprinting and penetration testing tools would be highly regarded.
Experience in the financial services industry and PCI-DSS knowledge.
Experience using COBIT, NIST, FAIR, or other governance/security/risk management frameworks desirable.

Work Hours: Varies upon the needs of the department.

Travel Requirements: This position requires travel 5-10% of the time.

Mental/Physical Requirements: This position will be performed in an office setting.  The position will require the incumbent to sit and stand at a desk, communicate in person and by telephone, frequently operate standard office equipment, such as telephones and computers.

Visa is an EEO Employer.  Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability or protected veteran status.  Visa will also consider for employment qualified applicants with criminal histories in a manner consistent with EEOC guidelines and applicable local law.

Visa will consider for employment qualified applicants with criminal histories in a manner consistent with applicable local law, including the requirements of Article 49 of the San Francisco Police Code.

U.S. APPLICANTS ONLY: The estimated salary range for a new hire into this position is 161,500 to 234,200 USD per year, which may include potential sales incentive payments (if applicable). Salary may vary depending on job-related factors which may include knowledge, skills, experience, and location. In addition, this position may be eligible for bonus and equity. Visa has a comprehensive benefits package for which this position may be eligible that includes Medical, Dental, Vision, 401 (k), FSA/HSA, Life Insurance, Paid Time Off, and Wellness Program.