Job Summary

Manage, support, and perform a wide variety of IT and compliance controls to protect company assets and to promote compliance with Company policies and procedures and industry best practices and in support of various requirements and audits (e.g., financial statement audit, Model Audit Rule, NYDFS, etc.). Provide guidance and act as advisor to the IT Controls leader and CIO as required to help the organization stay current on emerging IT audit trends. Assignments will encompass full spectrum of Nassau’s computer systems and or in-scope applications/processes including those parts of the environment that are outsourced or supported by third parties.

Principal Duties and Responsibilities

• Responsible for developing and driving the audit calendar/program/activities, supporting stakeholders and managing control deliverables
• Work in partnership with IT, business, risk, and audit teams across Nassau to ensure processes and internal controls are effective in mitigating operational, financial, and compliance risks.
• Identify and document IT risk exposures and provide control recommendations and operational improvements to management.
• Accountable for assisting process and control owners in assessing, designing and implementing IT processes and controls to effectively mitigate risk and reduce audit exposure.
• Coordinate and assist organization in conducting ITGC process walkthroughs and document the results to validate the accuracy of the processes and controls in order to facilitate internal or external audits.
• Maintain positive relationships with partner groups and awareness of ITGC projects and process changes in order to ensure controls continue to effectively mitigate risk and reduce audit exposure
• Accountable for performance and/or review IT controls testing and ensure clearly documented results.
• Analyze and document audit deficiencies and work with owners to identify and track improvement opportunities and remediation plans.
• Create and deliver training materials to educate organization on IT controls, risk management, and control documentation.
• Assist / support control owners with documentation and presentation of controls evidence; perform quality reviews of control documentation to ensure completeness and accuracy.
• Responsible for organizing control activities owned / performed by IT Controls team.
• Accountable for preparing status reports and analyses that communicate relevant observations and recommendations to improve processes and controls throughout Nassau and to external audit.
• Stay current on IT best practices, regulations, and industry trends to inform ongoing assessments of process and control effectiveness and maturity
• Stay current on audit trends and coordinate with internal and external auditors to streamline audit coverage.

Knowledge, Skills and Abilities

• Four-year degree in related field required. Preference in audit/accounting or technology/computer technology disciplines.
• 7 years of experience in IT Audit or IT Risk Advisory from a public accounting firm or experience within financial service industry
• Professional designation preferred (e.g. CIA, CISA, CPA)
• A deep understanding of IT General Controls and the role they play in an overall control environment. Solid understanding of various technology environments and their related IT risks and controls.
• Knowledge of critical audit concepts, methods, and testing attributes with the ability to stay current on emerging audit trends.
• Project management skills to perform, direct and plan control testing assignments,
• Possess proficient and professional verbal and written communication skills essential to interacting with all levels of Nassau management as well external partners Experience with reviewing and analyzing SOC reports.
• Extreme ownership and attention to detail
• Advanced knowledge of Microsoft Word, Excel, PowerPoint and Access
• Ability to manage multiple tasks and priorities, and to stay organized and efficient in a fast-paced environment.
• Natural curiosity for finding opportunities for automation in processes and controls.
• Excellent verbal and written communication skills.
• Ability to work effectively across multiple functional and business groups.
• Ability to think critically and creatively to evaluate and resolve complex issues in a collaborative manner.

Compensation

Nassau maintains a holistic compensation philosophy focused on competitive base salaries, performance driven incentives, and unique professional development opportunities. The combination of compensation, benefits, and an entrepreneurial culture along with related experiences is key to recruiting and retaining talent. Our compensation system is designed to reward performance, support development and job growth, and compensate individuals relative to their contribution to our organization. The compensation for this position falls within Nassau’s salary band E: $65,000-$150,000.

Visit our Careers page and apply online at www.nfg.com.

Based in Hartford, CT, Nassau Financial Group is a growth focused and digitally enabled financial services company with three distinct and closely connected businesses: insurance, reinsurance, and asset management. Nassau was founded in 2015 and has grown to $1.5 billion in total adjusted capital and $23.7 billion in assets under management.

As part of a young and growing financial services enterprise, our employees are tapping into a new entrepreneurial spirit while they build on a long track record of putting customers first, understanding the evolving income and protection needs, and developing quality products to meet those needs.

Nassau provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws.

This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation, and training.