Director, External Audit Engagement at Fidelity Investments

Boston, Massachusetts, United States

Apply Now
Fidelity Investments Logo
Not SpecifiedCompensation
Senior (5 to 8 years), Expert & Leadership (9+ years)Experience Level
Full TimeJob Type
UnknownVisa
Financial Services, CybersecurityIndustries

Requirements

  • Proven knowledge of IT risk and cybersecurity functions and how they contribute to Fidelity’s mission and success
  • Extensive knowledge of audited cybersecurity frameworks and standards, including AICPA’s SOC 1, SOC 2, and SOC 3 (including all SOC 2 trust principles), PCI-DSS, HITRUST, ISO/IEC 27000 family
  • Understanding of NIST Cybersecurity Framework core standards
  • Experience and knowledge managing projects end-to-end, with demonstrable ability to communicate progress effectively across multiple lines and levels
  • Bachelor’s degree in a technology or computer science subject area (a plus)
  • 7+ years working in IT assurance for a 'Big 4' or similar audit firm and experience with Fortune 500 clients
  • Cybersecurity certifications (a plus)
  • Prior experience in a cybersecurity role (policy, operations, technology) or in an IT risk role
  • Familiarity with laws and regulations imposing information security requirements (e.g., HIPAA, GLBA, FFIEC, CFTC, GDPR)
  • Ability to quickly establish trust and positive rapport with ECS business partners and BU stakeholders
  • Independent worker with high sense of ownership and 'focus and finish' attitude
  • Ability to influence product areas to prioritize external assessments in product roadmaps and backlogs
  • Ability to manage multiple priorities independently with a proactive approach to defining issues and resolving open questions
  • Ability to effectively facilitate and follow up on business meetings, present information to groups with appropriate formality
  • Ability to react quickly to requests with a sense of urgency
  • Data analysis and synthesis skills; working knowledge of MS-Excel

Responsibilities

  • Play a leadership role within ECS to ensure successful engagements with independent third-party audit firms assessing Fidelity’s control environment
  • Introduce ECS product areas to requirements within certification frameworks (e.g., SOC1/2/3, ISO 27001, NIST CSF/800-53, HITRUST, PCI-DSS)
  • Work with line managers to ensure controls are designed in accordance with framework requirements and operating per defined procedures
  • Assist product area teams with gathering evidence to demonstrate control effectiveness during 3rd party assessments
  • Work to resolve or explain potential exceptions identified in assessments
  • Oversee the timely issuance of draft and final reports attesting to Fidelity’s cybersecurity control environment
  • Work closely with Enterprise Technology and Risk Analysis (ETRA) External Audit Center of Excellence and relevant BU information technology organizations
  • Coordinate compliance activities across ECS product areas with GRC colleagues

Skills

Key technologies and capabilities for this role

SOC1SOC2SOC3ISO 27001NIST CSFNIST 800-53HITRUSTPCI-DSSHIPAAGLBAFFIECCFTCGDPRCybersecurity GovernanceRisk ManagementComplianceAudit ManagementControl DesignEvidence Gathering

Questions & Answers

Common questions about this position

What experience is required for the Director, External Audit Engagement role?

Candidates need 7+ years working in IT assurance for a 'Big 4' firm, proven knowledge of IT risk and cybersecurity functions, and extensive knowledge of audited cybersecurity frameworks including SOC 1/2/3, PCI-DSS, HITRUST, and ISO/IEC 27000 family.

What frameworks and standards does this role involve?

The role covers frameworks such as SOC1/2/3, ISO 27001, NIST CSF/800-53, HITRUST, PCI-DSS, and familiarity with regulations including HIPAA, GLBA, FFIEC, CFTC, and GDPR.

Is a degree required for this position?

A Bachelor’s degree in a technology or computer science subject area is a plus but not explicitly required.

What is the employment type for this role?

The position is full time.

What makes a strong candidate for this Director role?

Strong candidates will have 7+ years in Big 4 IT assurance, deep expertise in cybersecurity frameworks like SOC 2 and HITRUST, project management experience with cross-functional communication, and knowledge of NIST standards.

Fidelity Investments

Investment management and financial services provider

Website

About Fidelity Investments

Fidelity Investments offers a range of financial services and tools designed to help individuals manage their investments and stay informed about the markets. Their products include mobile applications and market monitoring tools that provide users with real-time market quotes, news, and trading capabilities. For example, the Fidelity Market Monitor for Glass delivers daily market quotes directly to Google Glass, while the Fidelity app for Windows Phone 8 allows users to access news and trading tools on their mobile devices. Additionally, features like the Watch List Visualization for iPad help users track stock price changes over time using a heatmap. What sets Fidelity apart from its competitors is its focus on integrating new technologies and user-friendly interfaces to enhance the investment experience. The goal of Fidelity Investments is to empower individuals with the information and tools they need to make informed financial decisions.

Boston, MassachusettsHeadquarters
1946Year Founded
$120,238.8MTotal Funding
DEBT_FINANCINGCompany Stage
Fintech, Financial ServicesIndustries
10,001+Employees

Benefits

Health Insurance
Mental Health Support
Hybrid Work Options
401(k) Retirement Plan
401(k) Company Match
Unlimited Paid Time Off
Parental Leave
Student Loan Assistance
Tuition Reimbursement

Risks

Loss of key personnel like Gita Bal may impact Fidelity's research capabilities.
Increased competition from Vanguard's new division could draw clients away from Fidelity.
Potential reputational risk from Bitcoin ETF outflows could affect Fidelity's offerings.

Differentiation

Fidelity Labs offers innovative beta products like Market Monitor for Google Glass.
Fidelity's mobile solutions are available on multiple platforms, including Windows Phone and iPad.
Fidelity's Open Limit Order Visualization provides unique insights into order execution proximity.

Upsides

Increased adoption of wearable tech could boost Fidelity's mobile solutions.
Growing interest in Bitcoin ETFs suggests expansion in Fidelity's digital asset offerings.
Rise of AI could benefit Fidelity's data analytics and AI-driven investment strategies.

Related Jobs

United States
Remote iconRemote

Internal Audit Lead

Kraken
$127,000 - $203,000/year
  • Employment type iconFull Time
  • Experience level iconExpert & Leadership (9+ years)
United States
Remote iconRemote

Director, Member Engagement

Imagine Pediatrics
Salary not specified
  • Employment type iconFull Time
  • Experience level iconSenior (5 to 8 years), Expert & Leadership (9+ years)
Hundred
Remote iconRemote

Technical Security Operations Center (SOC) Manager

True Zero Technologies
Salary not specified
  • Employment type iconFull Time
  • Experience level iconSenior (5 to 8 years), Expert & Leadership (9+ years)
Phoenix
Remote iconRemote

Senior Audit and Exam Coordinator

Valon
Salary not specified
  • Employment type iconFull Time
  • Experience level iconSenior (5 to 8 years)
Remote
Remote iconRemote

Senior Assurance Manager

Phaidra
Salary not specified
  • Employment type iconFull Time
  • Experience level iconSenior (5 to 8 years)
United States
Remote iconRemote

Product Solutions Manager, Audit -Central (Remote)

AuditBoard
$130,000 - $160,000/year
  • Employment type iconFull Time
  • Experience level iconSenior (5 to 8 years), Expert & Leadership (9+ years)
United States
Remote iconRemote

Sr. Audit Manager

M&T Bank
Salary not specified
  • Employment type iconFull Time
  • Experience level iconSenior (5 to 8 years)

Land your dream remote job 3x faster with AI

Try Jobo Free