Description:
To assist in providing internal control guidance, evaluate control effectiveness, and recommend improvements to control-related practices commensurate of a mature Internal Controls over Financial Reporting (ICFR) program. Work closely with the Lead Financial Statement Risk Analysts and key business partners to understand high risk processes, financial statement risks, and key controls to reduce the risk of financial misstatement. Responsible for internal controls identification, design and documentation, identifying and assessing financial statement risk related to third-parties and supporting related audit responses.
Responsibilities:
- Support all aspects of the Internal Controls over Financial Reporting (ICFR) Vendor Risk program
- Assess third parties for ICFR/financial statement impact
- Review relevant SOC 1 (SSAE18) reports to assess control environments for third-parties, work with business partners to identify, assess and document user controls
- Assess and document ICFR related Information Technology General Controls (ITGCs) to address control gaps in design effectiveness
- Support the activities related to partnership with external and internal auditors to establish audit scope, evidence, priorities, and testing procedures that will serve as the foundation for the subsequent audit execution strategy
- Evaluate performance of existing controls and devise remediation strategies that align control performance with the appropriate risk mitigation methodology
- Support multi-disciplinary control initiatives to assess controls and ultimately transform any control gaps into mature control environments
- Gather, review and update existing policies, process narratives, and process models / flowcharts to develop insight into the current state of business processes
- Research industry best practices associated with ICFR vendor risk and ICFR in general
- Solve complex control-related business problems by defining the problem, interviewing stakeholders, identifying, and evaluating alternatives, and presenting findings
- Manage time and workload in relation to projects to ensure an efficient and timely outcome
- Perform other duties as assigned
Qualifications and Education Requirements:
- Significant experience with Internal Controls over Financial Reporting (ICFR)
- Significant experience or knowledge of SOX including GAAP principles, financial statement preparation, and and internal accounting controls
- Strong experience reviewing or preparing SOC 1/SSAE18 reports
- Strong experience with Third Party Risk Management activities
- Strong experience re-designing processes and identifying control gaps to be consistent with a mature ICFR program
- Strong experience with extracting and documenting business process controls and information technology application and general controls (e.g., access controls list, change controls, segregation of duties, etc.)
- Strong experience assessing the design and operating effectiveness of key controls
- Experience with interacting and communicating with multiple stakeholders & management
- Experience in managing multiple priorities independently and/or in a team environment to achieve goals
- Effective skill interpreting and synthesizing large amounts of information
- Strong experience that demonstrates the ability to research, compile, and document data, business processes, and workflow, including strong knowledge of Microsoft PowerPoint, Excel and Visio.
- Strong experience presenting findings, conclusions, alternatives, and information clearly and concisely
- Advanced skill interacting with staff, management, vendors, and members diplomatically and tactfully
- Bachelor's degree in Accounting, or related field, or the equivalent combination of experience, education and training
Desired Qualifications and Education Requirements:
- Advanced knowledge of Navy Federal's functions, philosophy, operations and organizational objectives
- Certified Public Accountant (CPA) designation
- Certified Internal Auditor (CIA) designation