JOB DESCRIPTION:

The Senior IT Internal Auditor is responsible for performing various IT, regulatory, SOX, and operational audits to protect corporate assets and ensure proper internal controls are developed and maintained in the company.

QUALIFICATIONS:

• 3+ years of experience in Big Four and/or IT internal audit department of a large publicly traded company. Specific industry experience is a plus.
• BA/BS/MS in Business Administration, Technology, Information Systems, Cybersecurity, or other related Information Technology field of study.
• Professional audit or information security certified (CIA, CPA, CISA, CISSP, SANS GIAC, etc.) or actively working towards certification.
• Understanding of the COSO/COBIT frameworks, SOX, ISO, internal controls, and test plan development.
• Broad audit experience across various areas of IT, including databases, operating systems, and applications.
• Working knowledge of SAP, Oracle, and/or other cloud-based applications.
• Advanced knowledge of network and application vulnerability assessment, IT practices, risk assessment practices, change control, data privacy, authentication, authorization, credential management, business continuity and disaster recovery.
• Knowledge of the various auditing industry standards, including ISACA and IIA Standards and Guidelines.
• Ability to work collaboratively and communicate with personnel throughout all levels of the organization.
• Able to travel up to 10% domestically or internationally.
• All applicants are subject to criminal background investigation.

SKILLS:

• Excellent analytical, organizational, and project management skills
• Strong sense of urgency and solution-oriented mindset
• Strong presentation, interviewing, interpersonal, verbal and written communication skills.
• Proficiency in Microsoft Suite (Excel, PowerPoint, and Word)
• ACL Analytics, IDEA, Tableau, or other analytics and visualization tool experience
• RPA or other automation knowledge and experience is a plus.

• Support Internal Audit planning activities for SOX and operational audits, including risk assessment, scoping analysis, planning, execution, and communication.
• Perform control testing, propose process improvements based on best practices, coordinate with external auditors, provide guidance to control and process owners, monitor and report on remediation efforts.
• Assist with documentation of standard processes, data flows, and enterprise-wide control requirements for IT security.
• Assist in facilitating periodic risk assessments, audits, and gap analysis as needed with oversight of the IT Audit Director.
• Leverage audit automation tools in the evaluation of business operations and systems.
• Apply data analytic concepts, principles, and techniques to effectively identify control deficiencies and/or process improvement opportunities.
• Provide consulting services on key strategic IT initiatives and projects as well as in reviews of security systems and internal controls under development.
• Assists with special projects, contracted services and other agreed upon procedures requested of the Internal Audit Department.
• Develop and maintain productive client, staff, and management relationships through individual contacts and group meetings.