Senior Director of Audit and Risk (Remote)
Bottomline is at the forefront of digital transformation. We are a growing global market leader uniquely equipped to address the changing needs of how businesses pay and get paid. Our culture of Working with and for each other enables us to delight our customers. We empower our teams to think like owners driving customer delight, helping them grow their business and win in their markets.The Senior Director of Audit & Risk provides vision and leadership for the organization"s overall Audit Governance posture and culture. Developing Audit & Risk Policies and Procedures, driving governance initiatives, directing the planning and implementation of enterprise IT systems, applications, and infrastructure from a governance perspective are important aspects of this role. The senior director collaborates closely with other areas of IT, Audit & Risk as well as with Compliance and other organizational leaders and key stakeholders to share the corporate governance vision, soliciting feedback in an effort to achieve higher levels of enterprise security governance through collaboration and cooperation.This position can be based out of an open location in the United StatesHow You"ll ContributeEstablish ERM & IA Charter and develop Bottomline"s internal audit strategy and roadmap.Lead engagement planning and scoping activities pertaining to Bottomline audit plan including the assessment of all relevant risk factors.Manage and execute audits, including identifying and analyzing risks, planning and prioritizing the audit work, conducting interviews, observing operations, documenting and analyzing procedures and controls, completing audit tests at times, preparing and reviewing appropriate work papers, developing audit recommendations, socializing identified issues with appropriate management, and preparing audit reports.Demonstrate ability to understand and train others in the universe of business/technical risks and in the evaluation of the adequacy of management's control design and effectiveness of control activities.Responsible for ensuring the team completes the Bottomline SSAE18 testing on behalf of management within deadlines working closely with documented internal controls narratives.Manage external advisors and vendor risk relationships.Ensure overall quality and consistency of audit work, and adherence to department and professional standards for audits. Continuously seek opportunities for audit process improvement.Manage team members who partner with other functions to execute internal investigations where needed.Advocate and leverage the use of technology across the function and throughout the audit process. Champion continuous auditing efforts and supporting strategies.Establish and maintain relationships with key executives across Bottomline.Facilitate Bottomline Enterprise Risk Assessment process including interviews with key senior leaders. Based on the assessment, develop comprehensive risk action plan.Foster and maintain a healthy, collaborative team environment and strong group morale.Develop and maintain collaborative working relationships with management, learning and understanding the business to better provide value-added services, establishing credibility as a management consultant and internal controls resource, and ensuring audit client satisfaction.Team Operational ManagementDirectly manage the global Audit & Risk team and programs to ensure compliance with Bottomline internal and regulatory requirements:Participates as a member of the Leadership team, contributing toward improved departmental performance.Leads and directs Audit & Risk Change Control meetings, providing insight, education and to the group as a whole.Leads and provides overall strategic direction for team, including managing day-to-day aspects as necessary.Creates and embodies a positive, customer service-focused culture within the team.Regularly engages with each team member to understand individuals" needs and career objectives, promoting employee career growth and establishing aligned organizational, team and individual goals.Coaches and mentors team members to ensure alignment with Bottomline organizational initiatives and objectives.Provides strong leadership and management for a diverse team, including recruitment, training, development, counseling and appraisals.What Will Make You Successfulin-depth advanced knowledge and skills specialized in Audit & Risk technical areas with an understanding of external environment factors that may affect own specialist areas:Bachelor"s Degree in Computer Science or a related engineering field or equivalent experienceUndergraduate or graduate degree in management information systems, engineering, technology, computer science or a related field is preferred8+ years" experience in a technology audit, technology risk management and/or information technology function, preferably within the financial services industry.Relevant professional certifications are a plus (eg, CISA, CISM, CRISC, CEH).Strong understanding of application development, databases, operating systems, networking, and other key technology infrastructure components.Advanced knowledge of technology controls including: application security management (eg, user entitlements, authentication, accountability, data protection), system architecture and design (eg, availability, redundancy, scalability, data integrity and validation), technology operations (eg, change and release management, data backup and retention, performance and capacity management), and technology governance (eg technology risk management, cyber security rules and regulations).