Founded in 1908, CIT (NYSE: CIT) is a financial holding company with approximately $50 billion in assets as of Dec. 31, 2017. Its principal bank subsidiary, CIT Bank, N.A., (Member FDIC, Equal Housing Lender) has approximately $30 billion of deposits and more than $40 billion of assets. CIT provides financing, leasing, and advisory services principally to middle-market companies and small businesses across a wide variety of industries. It also offers products and services to consumers through its Internet bank franchise and a network of retail branches in Southern California, operating as OneWest Bank, a division of CIT Bank, N.A. For more information, visit cit.com.
Bachelor’s Degree, preferably in Computer Science, Information Systems, or other related field
Ability to multi task in a fast-paced environment
Minimum of 3 years of IT Risk/ SOX/ IT Audit experience preferred
Able to objectively assess IT systems and processes, and devise effective solutions to mitigate risk
Experience in control areas such as access management, change management, privacy, technology platform vulnerability, operations, service delivery, information security, etc.
Strong analytical skills with solid working knowledge of MS Excel, PowerPoint, Word and Project.
Experience with ITGRC tools like Archer, RiskVision a plus
Experience with financial industry regulatory requirements a plus
Self-motivated individual with excellent verbal and written communications skills
Directing or assisting in the development of the Disaster Recovery Plans and Procedures, and providing regulator updates to Enterprise BCP/DR teams
Ensuring all technical components of the Disaster Recovery Plans are successfully tested according to schedule. This includes annual enterprise wide testing as well as testing due to specific project and implementations.
Assessing the Disaster Recovery implications of proposed technological and organizational changes, and coordinating any revisions to existing Disaster Recovery Plans and Procedures
Coordinating routine updates to the detailed information supporting the Disaster Recovery Procedures (i.e. contact lists, assignments, vendor information, network diagrams, etc.).
Ensuring all personnel with specific Disaster Recovery responsibilities are adequately trained to fulfill their assigned responsibilities
Providing on-call support during any emergency, in coordination with Enterprise BC teams and assigned coordination teams
Gathering, documenting, and distributing exercise results and evidence
Following up on unresolved exercise issues through resolution
Conducting DR tests to validate the ability to meet the RTOs and RPOs of applications and IT services
Leading the coordination and execution of the full-site data center failover tests, including planning and coordination between business areas and IT, execution on test day, and post-test activities
Liaison between response teams and IT