girl looking into her desktop
Back to search results

IT Audit Supervisor – Cloud Computing

Charlotte, North Carolina;

Job Description:

At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection.  Responsible Growth is how we run our company and how we deliver for our clients, teammates, communities and shareholders every day.

One of the keys to driving Responsible Growth is being a great place to work for our teammates around the world. We’re devoted to being a diverse and inclusive workplace for everyone. We hire individuals with a broad range of backgrounds and experiences and invest heavily in our teammates and their families by offering competitive benefits to support their physical, emotional, and financial well-being.

Bank of America believes both in the importance of working together and offering flexibility to our employees. We use a multi-faceted approach for flexibility, depending on the various roles in our organization.

Working at Bank of America will give you a great career with opportunities to learn, grow and make an impact, along with the power to make a difference. Join us!

Corporate Audit is a global corporate team responsible for providing independent assessments of business activities throughout Bank of America. As part of the Global Technology Audit Team, you will be responsible for identifying, evaluating, validating, and reporting on Cloud Computing and Information Security technology risks across Cloud Service Provider models (IaaS, SaaS, PaaS) that support critical financial services applications.

Candidates for this position are expected to have a solid understanding of general IT risk and control concepts and fundamental Cloud Computing technologies, have industry knowledge and awareness as well as a foundational knowledge of Cloud Computing technology principles and IT Governance and Management practices.


  • Leads Cloud Computing audit work and issue validation for these areas

  • Responsible for conducting relevant testing and issue validation of Cloud Computing related controls

  • Utilize analytical skills and product / technical expertise necessary to perform risk assessments, develop and perform audit test procedures, and report findings.

  • Ensure high quality work is delivered for individual audit engagements and issue validation

  • Exercise intellectual curiosity, critical thinking, and judgment to effectively influence and challenge management to improve the control environment.

  • Continuously develop Cloud Computing acumen through training and skill development.

Required Skills & Experience

  • Minimum 5 – 7 years in an IT Audit / Assurance role or similar background in Risk Management, Information / Cyber Security, or Cloud Computing (notably AWS or Azure) related fields.

  • Possess or working towards professional audit and Cloud Computing security certifications such as CISA, CISM, CISSP, CRISC, CCSP.

  • Understanding of audit practices and methodologies as well as rules for professional and ethical conduct.

  • Ability to think critically and apply audit and technical expertise.

  • Ability to execute and evaluate audit test plans within a risk-based audit methodology.

  • Sound organizational and time management skills, including the ability to prioritize work and meet deadlines.

  • Strong analytical skills to analyze data and provide an opinion.

  • Excellent oral and written communication skills, including the ability to document audit work in a detailed and professional manner and communicate results.

  • Working knowledge of industry frameworks and standards such as ISO/IEC 27001:2013, PCI DSS, NIST CSF and NIST 800-53

  • Ability to work independently and collaborate with other diverse teammates.

  • Moderate proficiency with one or more Cloud Computing related technologies (Cloud Computing, Networking, etc.)

  • Bachelor’s degree or equivalent experience

Desired Skills & Experience

  • Advanced degree in Information Security/Cyber or related technical field.

  • Current Professional IT audit certification (CISA, CISM, CRISC, COBIT, etc.)

  • Current Technology and Cloud Computing related certification (CCSP, CISSP, ITIL, AWS, Microsoft Azure, Red Hat OpenShift, etc.)

  • Audit / Assurance or operational experience in Financial Services or a large-scale enterprise environment.


1st shift (United States of America)

Hours Per Week: 


Learn more about this role

Full time


Manages People: No

Travel: Yes, 20% of the time