Job Description
Role: IT Auditor (Utility Industry & NERC CIP)
Duration: 9 Months
Location: Austin, TX
Primary Skills:
IT Auditor that will be performing internal and enterprise-wide IT audits on the effectiveness of IT general controls. This candidate should have at least 2 years of experience with IT auditing, preferably within the Utility Industry, and knowledge of NERC CIP standards.
Responsibilities:
The IT Auditor works with business and IT Management to plan and perform basic to complex internal and enterprise-wide IT audits. This responsibility includes performing internal audits of the existence, operation, and effectiveness of IT general controls. Additional responsibilities of the IT Auditor include: 1) identifying control deficiencies, 2) assessing exposure and significance, 3) proposing cost effective recommendations, and 4) preparing reports reflecting the results of the work performed. The IT Auditor may also perform follow-up on the status of outstanding audit and risk findings.
- Conduct IT risk assessment by understanding business objectives, internal controls, enabling technology, and IT infrastructure
- Perform audit work over various technologies utilized by the company and various IT functions. Assess both the design and operating effectiveness of internal controls
- Prioritize and assist in scheduling audit tests to be performed, and interact with auditees to obtain the necessary information
- Contribute to identification of department operational efficiencies and changes in auditing operations
- Evaluate controls designed to prevent or detect fraud, including management override of controls
- Prepare and present findings as needed
- Communicate audit results and recommendations both orally and in writing to the management
- Schedule and conduct presentations at meetings with auditees and management as needed
- Participate in audit teams and department committees
- Other duties as assigned
Minimum (Required):
- Bachelor’s degree preferred, high school diploma (or equivalent) in combination with significant experience will be considered in lieu of degree (total 6 years relevant experience). Minimum of high school diploma or equivalent is required
- 2 Years of Experience in Information Systems Auditing
- 1 – 3 Years of Demonstrated ability to resolve problems and make decisions independently
- 1 – 3 Years of Skilled in operating personal computer and various software packages (Microsoft Office, Outlook, Excel, etc.)
Preferred (Optional):
- CRISC, CISA, CISSP, CRISC, CIA, CISM, CGEIT, or other relevant certification
- Knowledge of NERC CIP standards
- Excellent verbal and written communication skills
- Knowledge of cybersecurity and IT infrastructure
- 2 Years of Current/previous utility experience