Job Summary This is a hybrid role that will lead information technology and business process audit assignments and oversee work of less experienced auditors. Plan, develop, and conduct audits of complex information systems and business control processes. Provide independent assurance of business and system controls and ensure related regulatory compliance. Create annual audit plans and lead Sarbanes-Oxley controls testing. Serve as mentor to other members of audit team. Maintain and administer systems used by audit and risk teams.
Key Accountabilities - Plan, develop, and lead the execution of information technology and business process audits
- Execute Sarbanes-Oxley controls testing and other required regulatory testing including the review of other auditors' workpapers
- Ensure documentation fully supports conclusions and conforms to required standards
- Conduct review of pertinent data and material, sampling techniques, query tools, and data analytics on audits
- Maintain and administer systems used by audit and risk teams
- Provide recommendations on internal control structures, information security, information privacy, process efficiencies, and policies and procedures
- Keep abreast of technology trends and regulatory requirements to ensure appropriate controls
- Lead formal and informal presentations to various levels of management on audit results and recommendations
- Maintain effective working relationships with diverse group of leaders and business unit groups
- Audits may also include special investigations requiring the application of specialized auditing principles and practices
- Write comprehensive audit reports that clearly describe objectives, scope, conclusions, and findings. Provide value added recommendations to both internal and external stakeholders.
- Recommend new auditing techniques to analyze the adequacy of controls and the effectiveness of operational procedures and processes
- Coordinate with independent auditors and provide data to support external audits
- Provide support in developing the Risk Register for Senior Leadership and Board of Directors. Serve as an internal consultant to business units as required to support the risk management and identification strategy
- Provide leadership, analytical and financial skills on ad hoc projects
- Although this role primarily focuses on information technology there will be a portion of the year assigned to financial and operational audits as well
Minimum Education & Experience Requirements - This is a dual-track base requirement job; education and experience requirements can be satisfied through one of the following two options:
- Bachelor's degree in information technology, business, engineering, or science-related discipline and three years of experience in information technology, information technology audit, information technology compliance and/or risk assurance; OR
- Bachelor's degree in accounting and three years of experience in IT auditing
- Big 4 and/or public company direct experience preferred
- Strong working knowledge of GAAP and Sarbanes-Oxley Act
- Certification as certified information system auditor (CISA), or similar professional certification (e.g., certified information systems security professional (CISSP) or completion within two years of date hired into role
Other Qualifications - Ability to think strategically and creatively while demonstrating strong analytical and facilitation skills
- Strong verbal, and non-verbal communication skills and able to concisely analyze, summarize and present financial information to large and/or small audiences
- Ability to work professionally with individuals at all levels of the corporation and with outside consultants
- Demonstrated project management skills and experience to manage multiple projects simultaneously
- Ability to organize work independently and work in teams
- Understanding of information technology standards and processes (e.g., emerging technologies, architectures, systems design, systems integration, and automated controls)
- Ability to quickly learn new technology environments and processes
- Ability to respond quickly to changing customer requirements and changes in the business
- Ability to work overtime during peak reporting periods; flexibility in working hours required
- Engages in a positive working environment within and across functional areas