Assistant Vice President IT Auditor, Internal Audit

Become an everyday champion — and build a career where your impact fuels financial progress.

What We Do

CardWorks Financial Group is a diversified financial services platform building ethical solutions across credit, lending, and the full customer lifecycle. Through our family of companies, CardWorks Financial Group tackles the complex challenges that larger financial institutions leave behind. We’re embedded throughout the credit card ecosystem as a lender, servicer, and merchant acquirer.

Who We Are

• Merrick Bank: The bank that builds
• CardWorks Servicing: One partner, total performance
• Carson Smithfield: Resolution with respect

With nearly 40 years of operating history, our track record is solid: disciplined in downturns and built to accelerate in recovery. The CardWorks Financial Group companies take precise approach in complex markets, as a top three non-prime focused general purpose card issuer and a top fifteen U.S. merchant acquirer.

Our team tackles the industry’s most complex credit and payment challenges. And we believe that excellent work starts with a team that feels supported, respected, and empowered to grow.

CardWorks Servicing, LLC provides end-to end operational servicing functions for credit cards, secured cards, and installment loans. We service consumer and small business loans across the credit spectrum and offers backup servicing and due diligence services to capital providers and trustees.

Founded in 1997, Merrick Bank is an FDIC®-insured financial institution headquartered in South Jordan, Utah, with over $10 billion in assets. A wholly owned subsidiary of CardWorks Financial Group, Merrick Bank serves roughly five million cardmembers and more than 100,000 merchant customers, offering credit cards, recreational loans, deposit accounts, merchant services and bank sponsorships to consumers and businesses.

Carson Smithfield, LLC provides a variety of post-charge-off debt recovery services, including digital self-service, IVR, live agent, and external agency management.

Position Summary:

The AVP IT Internal Auditor is responsible for assisting the VP IT Auditor in planning, performing, and reporting on a comprehensive risk-based Internal Audit Plan covering all business units, departments and functions enterprise wide. The AVP IT Internal Auditor is expected to maintain specialized technical expertise in information technology areas and to stay abreast of regulatory, industry, and other changes that affect the Company’s risk profile. The AVP IT Internal Auditor is expected to have a thorough understanding of audit methodologies and to develop audit workpapers in accordance with the Company’s Internal Audit Quality Assurance Improvement Program. The AVP IT Internal Auditor also provides guidance, direction, and mentoring to less experienced staff.

Essential Functions:

• Assists the VP IT Auditor in identifying risk and controls; and in planning information technology related internal audits.

• Performs and /or leads audit evaluations to provide reasonable assurance that information technology on risk management, control, and governance systems are functioning as intended and will enable the Company to meets its information technology related objectives and goals.

• Ensures that audit objectives and testing results are adequately evaluated to conclude on the effectiveness of information technology related internal controls and develop conclusions on residual risks.

• Assesses data analytic practices and provides recommendations to bring efficiencies to audit testing.

• Prepares audit work papers in accordance with the Quality Assurance Improvement Program and ensures that sufficient evidence is documented to support related audit findings and conclusions.

• Reports risk management issues and information technology related internal control deficiencies via professionally written deliverables that are appropriate for all levels of management and governance.

• Provides support to the Company’s anti-fraud programs, including participation in fraud investigations and identification of information technology related fraud risks.

• Performs review of audit workpapers, supervises, and mentors staff as requested by the VP IT Auditor.

• Complies with the Institute of Internal Auditors (IIA) International Standards for the Professional Practice of Internal Auditing and the Internal Audit Code of Ethics.

• Attends requisite meetings in the absence or at the request of the VP IT Auditor.

• Obtains management responses and performs follow up inquiry and transactional testing to confirm remediation of audit findings.

• Participates in training and development programs to develop and maintain audit, process, or Company subject matter expertise.

• Compliance with Laws & Regulations:

• Responsible for complying with all of the Company’s internal control policies and procedures.

• Responsible for understanding and complying with all laws and regulations to which the Company is subject.

• Responsible for communicating problems in operations, noncompliance with the code of conduct, noncompliance with laws and regulations, policy violations, or illegal acts.

Education and Experience Qualifications:

• Bachelor’s Degree in accounting, Information Technology, or related field is required; Master’s Degree is preferred .
• Seven (7)+ years audit experience in information technology, financial services, or public accounting is required.
• A minimum of one professional certification such as Certified Public Accountant (CPA), Certified Internal Auditor (CIA), Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), or Certified Fraud Examiner (CFE) required.

Summary of Qualifications:

• Demonstrable knowledge of information technology related internal control best practices and the Committee of Sponsoring Organizations of the Treadway Commission Integrated Framework;
• Demonstrable knowledge of Federal Deposit Insurance Corporation Improvement Act and Sarbanes-Oxley Act requirements
• Experience in independently performing full audit work cycle, from planning to reporting
• Demonstrable knowledge and experience in Information Technology General Computer Controls and Systems and Organization Controls (SOC) review techniques
• Demonstrable knowledge of privacy laws, Payment Card Industry Data Security Standards, Federal Financial Institutions Examinations Council Handbooks, National Institute of Standards and Technology Cyber Security Standards, and other information technology related industry best practices
• Demonstrable understanding of information technology infrastructure environments, such as Windows and Linux server environment, database architecture, Networking, Cloud security, etc.
• Excellent communication skills, both verbal and written
• A track record of delivering exceptional results and problem solving skills
• Excellent organizations skills to understand and set priorities and monitor progress towards goals

Work Environment/Physical Demands:

• Light physical requirements to perform essentials functions of this job, example: filing work papers, lifting files, etc.
• 10 to 20 percent travel expectation
• Location: South Jordan, Utah; Woodbury, NY; or Pittsburg, PA

The salary range for this position, if located in NY Metro/NY State is $168,000 to $187,000. However, please note that the salary range will vary for other geographic areas.

#INDHP

Our Employee Value Proposition

• Competitive Pay, including a Bonus Target or Variable Pay Incentive Program
• Benefits Package -Medical, Dental, and Vision (plus much more)
• 401(k) Plan with Company Match
• Short- & Long-Term Disability
• Wellness Programs
• Group Life and AD&D Insurance
• Paid Vacation, Sick Days and bank Holidays
• Employee Engagement Activities including Employee Appreciation Day, DEI Employee Resource Groups, Corporate Social Responsibility, Service Recognition

We offer a total rewards package comprised of a competitive base rate of pay, variable pay incentive programs based on the role, and a comprehensive benefit suite. Offered rates of pay are determined based on job-related knowledge, relevant experience, skills, certifications, and geographic location.

We are an equal opportunity employer, and we evaluate qualified applicants without regard to race, color, religion, sex, national origin, disability, veteran status or any other legally protected characteristic. We will conduct a thorough background check for all hires in compliance with applicable laws.