Audit Manager (Cybersecurity and Technology)

The BNSF Railway Compliance and Audit Department ensures adherence to best practices in corporate governance, risk management, and internal controls, fostering trust and alignment with business partners. Committed to ethics and integrity, this team plays a vital role in maintaining BNSF’s high standards. Their efforts are essential in upholding the company’s reputation and operational excellence.

This is a full-time located in Fort Worth, TX.   For certain positions, including this one, employees can work one day per week remotely.  Our leaders also foster a culture where work-life balance, which requires flexibility for when life happens, is important and respected.

Travel is minimal to none

Key responsibilities may include:  

This is an in-charge Auditor position, responsible for evaluating BNSF’s IT processes and cybersecurity practices against leading industry frameworks, identifying gaps in the design and execution of controls, and communicating issues and recommendations to BNSF’s Technology Services leadership. Key responsibilities include:

Support the annual cyber risk assessment and corporate compliance program.

Collect, review and analyze data from information systems.

Review and execute IT control testing.

Understand and report on control exceptions and deficiencies.

Identify improvement opportunities and control enhancements.

Present results, both in written and verbal formats.

Work independently and in a team environment to maximize performance. 

Manage multiple projects simultaneously

Daily work is conducted in an indoor office environment.

Relocation assistance may be available based on business need 

The duties and responsibilities in this posting are representative categories to be used in deciding whether to apply for this position. This is not an exhaustive list of the position’s duties.

At BNSF Railway, we encourage individuals from all backgrounds to apply, showcasing their skills, experiences, and development. We provide resources and tools to help you reach your full potential, fostering a supportive and inclusive environment. 

BASIC QUALIFICATIONS:

• Able to work in the US without company sponsorship now AND in the future.

• Bachelor’s degree in Accounting, Finance, Management Information Systems or related business area.

  
  

• Minimum of three years of working within either of the following or a combination of the following:

  • Corporate Internal Audit

    
    
  • 
    

    IT function

  • Finance function

    
    

  • Professional services firm

  
  

PREFERRED QUALIFICATIONS:

• Experience in implementation of internal control processes and programs for IT. Proficiency in executing projects in accordance with leading practice project management principles.

  
  
  

• Skill in delivering projects on-time/on-budget.

• Ability to document work performed in a clear and succinct manner that is sufficiently supported by audit evidence.

  
  

• Ability to analyze observations for root cause and draw conclusions.

• Ability to evaluate work processes and make suggestions or recommendations for improvement.

  
  

• Willingness to receive constructive feedback.

• Knowledge of audit methods and techniques.

  
  

• CPA, CIA, CISA, CISP, Cybersecurity Audit Certificate or other relevant certification desired.

• Knowledge of analytical techniques, programming, or system query techniques (Data Warehouse, SAS, TeamMate, Azure ,PowerBI , SQL).

  
  

• Knowledge of software and systems (SAP, Mainframe, Cloud, ServiceNow, Operating Systems)

• Knowledge of Mainframe environments.

  
  

• Knowledge of Cloud environments.

Source ⇲