Internal Audit Regulatory Manager

The Internal Audit Regulatory Manager is responsible for overseeing all regulatory and compliance-related
audit activities, with a particular focus on National Credit Union Administration (NCUA) examinations,
quality assurance and improvement program (QAIP) reviews, and the continuous enhancement of audit
methodologies. This role ensures the Internal Audit function remains in compliance with regulatory
expectations, internal policies, and industry best practices, playing a key leadership role in maintaining the
integrity and effectiveness of the audit function across the institution.

Regulatory Audit Management

- Oversee and manage the planning, execution, and reporting of compliance-focused internal
audits, including BSA/AML, fair lending, UDAAP, and other consumer-protection
regulations
- Oversee documentation, workpapers, and reports to ensure they are accurate, complete, and
comply with the Global IIA Standards
- Ensure audit coverage addresses key compliance risks and controls across the Credit Union
- Collaborate with Compliance and Risk Management functions to align audit coverage
- Implement processes and procedures to ensure the Internal Audit function is compliant with
Global IIA Standards and are completed competently, efficiently, and within the
required/communicated deadline
- Promptly involve stakeholders and the SVP Internal Audit/CAE when issue(s) arise
- Create and manage the budget and resource allocation for the department

Risk Assessment & Strategy

- Plays an integral role in the risk-based audit plan by contributing to the risk assessment
methodology and overseeing the risk-based audit plan results
- Identifies and assesses risks and adjusts the risk-based audit plan as needed, evaluating
proper coverage of critical areas, risks, and regulations
- Stays current with industry trends, regulatory changes, and emerging risks
- Assign and manage resources to effectively execute the audit plan
- Manage the audit plan and communicate adjustments timely and accurately
- Present and communicate findings, root cause analysis, and actionable recommendations to
stakeholders
- Leverage audit results and data trends to advise management on areas of strategic concern
- Create and execute internal strategic objectives that support the overall internal audit
functions’ mission and vision

Regulatory Oversight

- Act as the primary liaison for NCUA and other regulatory examination engagements.
- Manage regulatory exam coordination efforts, ensuring a timely and complete response to
examiner requests.
- Monitor changes in regulatory requirements and adjust audit practices accordingly.

Audit Methodology & QAIP

- Lead the development and continuous improvement of the Internal Audit methodology in
accordance with the Global IIA Standards.
- Manage the Internal Audit Quality Assurance and Improvement Program (QAIP), including
both internal and external assessments.
- Evaluate and recommend enhancements to audit tools, templates, documentation practices,
and internal policies and procedures.

Reporting & Communication

- Effectively communicate with internal departments, external auditors, regulatory bodies, and
other stakeholders
- Communicate audit findings, risks, and recommendations clearly to senior leadership and to
the Supervisory Committee.

Team Leadership & Development

- Supervise, coach, and develop a team on complex or sensitive regulatory engagements.
- Train and mentor staff on compliance auditing and regulatory examination preparedness.
- Foster a culture of collaboration, integrity, accountability, and continuous learning and
improvement
- Coordinate, direct, and support the appropriate education, certification, and training of staff
in support of the department and division’s objectives
- Complete performance appraisals for supervised audit staff, set established goals, and review
established goals consistently
- Promote a culture of integrity, accountability, professionalism, and ethical conduct
- Maintain certifications and fulfill annual CPE requirements

Education:

• Bachelor’s degree in Accounting, Finance, Business Administration, or related field (required)
• Master’s degree preferred

Certifications:

• CIA, Quality Assessor Certificate, CBSAP, CUCO

Experience:

• 7+ years’ experience of internal audit, regulatory compliance, risk management, or related
experience. Public accounting experience a plus
• 3+ years’ experience in a leadership or management role
• Strong understanding of NCUA regulatory requirements and examination processes.
• Demonstrated experience leading or managing QAIP or regulatory audits.
• Credit Union or financial institution experience in operations, compliance, management, risk
management, preferred

Skills/Abilities:

• Extensive knowledge of regulatory compliance and risk management frameworks
• Expertise in Global IA Standards and other regulatory requirements (e.g., FDIC, OCC, CFPB)
• Strong leadership, communication, and project management skills
• Strong written and verbal communication skills, including experience reporting to executives and
boards
• Self-starter, highly motivated, organized, and detail-oriented
• Professional in appearance and attitude
• Strong interpersonal skills and excellent team player
• Demonstrates curiosity, analytics skills and problem solving
• Proficient Microsoft Office skills. Ability to operate related computer applications and software
required to complete assigned responsibilities
• Ability to work well independently with limited daily supervision while meeting deadlines
• Ability to navigate through ambiguity, manage and coordinate multiple projects simultaneously,
accept ownership and accountability for projects and decisions, and deliver on commitments

Requirements/Knowledge:

• Strong understanding of the Global IIA Standards
• Proficient in Microsoft Office products
• Thorough knowledge of credit union products, services, policies and procedures
• Strong understanding of related legal and regulatory standards
• Demonstrate strong business acumen, problem-solving and analytical skills
• Travel may be required