Senior IT Auditor Responsibilities include conducting reviews of general support system controls and applications, preparing reports in a clear and timely manner, discussing audit reviews with senior members of the audit team, identifying misstatements/errors, and control weaknesses within the audited operations. The position also requires the ability to identify where control weaknesses may exist and advise management of the risk/impacts in order to take the appropriate course of action to eliminate or manage the weaknesses identified. Likewise, the auditor will serve as a consultant, providing advice to management and technical professionals concerning technology, information security, and financial risk.
Responsibilities: - Provide FISCAM/FISMA policy and analysis support to client personnel for multiple applications and networks
- Establish and implement organization policies in support of establishing efficient FISMA audits
- Document the assessment of design and fairness of IT control objectives in compliance with latest NIST instructions
- Participate in audit entrance/exit conferences and presenting audit findings
- Provide insight to the client on the content of control objectives and activities
- Perform document walk-through and facilitating client meetings
- Perform document testing of controls, design, and operating effectiveness of controls
- Communicate with other members of the team to plan the engagement and develop work program timelines, risk assessments and other planning documents
- Assist the Command in developing internal audit capabilities for sustainment of audit readiness
- Develop and implement automated and manual financial reconciliations to be used in audit-readiness sustainment
- Assist the Command with accounting and budgeting policy, financial and feeder systems support, transactional support, process improvements, financial reporting, and program management support
Requirements: - Bachelor's Degree ( Information Technology/Services/Systems, Computer Science or related discipline )
- 2-5 year(s) of IT audit experience
- Knowledge of SOX 404, FISCAM, FISMA and/or NIST special publication series
- IT audit experience within the federal government
- Experience with federal IT security tools
- CISA, CISSP and/or CPA (preferred)