At U.S. Bancorp India, we’re on a journey to do our best. We believe it takes all of us to bring our shared ambition to life, and each person is unique in their potential. A career with U.S. Bancorp India gives you a wide, ever-growing range of opportunities to discover what makes you thrive at every stage of your career. Try new things, learn new skills and discover what you excel at—all from Day One.
Operational Risk Review – Technology Auditor
The Operational Risk Review (ORR) Technology Auditor is entrusted with administering and executing testing activities within the Independent Risk Review Assessment (IRRA), a centralized second-line independent testing function. This role involves close collaboration with business lines and professionals in Technology, Risk, Compliance, and Audit across the bank to evaluate processes and controls, thereby supporting an effective risk management framework.
Key Responsibilities:
Execute tests within projects and activities that confirm compliance with internal policies, applicable laws, and regulations in areas such as Technology, Information Security, Cyber Security, Resiliency, Data Protection & Privacy, Artificial Intelligence, and Machine Learning.
Conduct comprehensive reviews covering, but not limited to: Software Development Life Cycle, Cloud Platform Security (Azure & AWS), Authentication and Access Control, Data Loss Prevention, Endpoint Security, Encryption Key and Certificate Management, Network Security, Logging and Monitoring, Security Incident Response, Vulnerability and Configuration Management.
Identify weaknesses in controls and processes through end-to-end control testing, including planning, walkthroughs, design assessments, sample selection, and evidence review.
Prepare high-quality documentation, including Risk & Control Matrices, in accordance with internal methodologies and regulatory requirements.
Collaborate with business lines and Risk Management teams to recommend and influence solutions that mitigate operational risks when gaps are identified.
Communicate testing results effectively to management, including drafting well-written reports and escalating significant risks as necessary.
Basic Qualifications
Bachelor's degree, or equivalent work experience
Typically, more than five years of applicable experience
Preferred Skills/Experience
Basic or intermediate knowledge of technology, systems, data governance, cyber and / or information security risks as well as industry trends that impact Bank operations.
Basic or intermediate Risk, Compliance, and Audit competencies.
Solid understanding of the business line’s operations, products, services, systems, and associated risks.
Solid business acumen and credibility to help business line(s) proactively identify and address risks.
Average process facilitation, project management, and analytical skills.
Average presentation, interpersonal, written, and verbal communication skills.
Proficient computer navigation skills using a variety of software packages, including Microsoft Office
applications and word processing, spreadsheets, databases, and presentations.
Applicable professional certifications (e.g., CISA, GSNA, CISSP, CRISC, CIA) are preferred
If there’s anything we can do to accommodate a disability during any portion of the application or hiring process, please refer to our disability accommodations for applicants.
Posting may be closed earlier due to high volume of applicants.
This is an U.S. Bancorp India posting. U.S. Bancorp India is a part of the U.S. Bank family.
