Address
Form of workThe Information Systems Internal Auditor (IS Auditor) provides independent assessments of the control environment over IT infrastructure, systems, and data through the execution of risk analysis, control evaluation, and innovative audit testing procedures. The IS Auditor focuses on the secure and effective deployment and operation of technology in support of corporate objectives and regulatory requirements. The IS Auditor builds and cultivates effective business relationships while providing independent value-added audit and advisory services. IS Auditor activities include developing risk-based audit programs, identifying recommendations that help mitigate risks and provide continuous improvement in processes and controls, communicating results, and following up on issues reported.
Principal Duties:
- Participates in risk analysis, control identification, and the detailed development, execution and communication of the risk-based audit plan
- Independently performs assigned audit testing and concludes on the effectiveness of controls, identifying control gaps and exceptions and evaluating the potential impact
- Verifies the adequacy of IT procedures for the company through a systemic program of audits
- Demonstrates the ability to multi-task, by clearly documenting the results of testing on more than one audit concurrently
- Completes audit work, including audit work plan, work papers, findings, and associated reports
- Prepares audit reports and work papers to ensure adequate documented evidence exists to support audit opinions and conclusions
- Conducts IT integrated audits with operational, compliance, financial, and investigative audit teams, as assigned
- Accurately interprets collected evidence to effectively Identify, recommend, and report improvement opportunities for processes and controls
- As appropriate, identifies opportunities for continuous improvement related to the use of technology
- Manages auditee relationship, including facilitating meetings, discussions of findings, and presenting draft and final reports in a professional manner
- Prepares well-written and timely audit reports which communicate audit issues and related recommendations in both technical and non-technical terms to management
- Effectively communicates audit issues and related recommendations in both technical and non-technical terms to management.
- Demonstrates development in technical and analytical skills to understand new and existing technologies, including Cyber Security, IT General Controls and Software Development Practices
- Demonstrates technical understanding of data analysis concepts and practices.
- Keeps abreast of company policies and procedures, current developments in technology and auditing professions, and regulatory changes
- Develops an awareness of changes in IT audit practices, regulatory requirements, and IT Risk frameworks to understand their impact to Auditing (e.g. NIST Cyber, CSC, COBIT, ISO2700x)
Job Related Experience:
Minimum Level: 1 year
Preferred Level: 3-5 years
Education:
Preferred Level: Bachelor's Degree (Any)
Preferred Majors:
- Computer Science,
- Information Systems
- Business Administration,
- Accounting Information Systems
Principal Duties:
- Participates in risk analysis, control identification, and the detailed development, execution and communication of the risk-based audit plan
- Independently performs assigned audit testing and concludes on the effectiveness of controls, identifying control gaps and exceptions and evaluating the potential impact
- Verifies the adequacy of IT procedures for the company through a systemic program of audits
- Demonstrates the ability to multi-task, by clearly documenting the results of testing on more than one audit concurrently
- Completes audit work, including audit work plan, work papers, findings, and associated reports
- Prepares audit reports and work papers to ensure adequate documented evidence exists to support audit opinions and conclusions
- Conducts IT integrated audits with operational, compliance, financial, and investigative audit teams, as assigned
- Accurately interprets collected evidence to effectively Identify, recommend, and report improvement opportunities for processes and controls
- As appropriate, identifies opportunities for continuous improvement related to the use of technology
- Manages auditee relationship, including facilitating meetings, discussions of findings, and presenting draft and final reports in a professional manner
- Prepares well-written and timely audit reports which communicate audit issues and related recommendations in both technical and non-technical terms to management
- Effectively communicates audit issues and related recommendations in both technical and non-technical terms to management.
- Demonstrates development in technical and analytical skills to understand new and existing technologies, including Cyber Security, IT General Controls and Software Development Practices
- Demonstrates technical understanding of data analysis concepts and practices.
- Keeps abreast of company policies and procedures, current developments in technology and auditing professions, and regulatory changes
- Develops an awareness of changes in IT audit practices, regulatory requirements, and IT Risk frameworks to understand their impact to Auditing (e.g. NIST Cyber, CSC, COBIT, ISO2700x)
Job Related Experience:
Minimum Level: 1 year
Preferred Level: 3-5 years
Education:
Preferred Level: Bachelor's Degree (Any)
Preferred Majors:
- Computer Science,
- Information Systems
- Business Administration,
- Accounting Information Systems
