Key skills
CloudCyber SecurityLeadershipProject ManagementCommunication
About this role
Role Overview
- Executes IT internal audit reviews and testing according to the annual IT Internal Audit plan, including fieldwork testing, documentation of results, and completion of workpapers in accordance with relevant internal and external auditing standards to determine adherence to guidelines and regulations and evaluate the effectiveness of internal controls.
- Supports the VP – Internal Audit, Audit Directors, and Audit Managers in delivering internal audit reviews.
- Assists in all audit processes, including risk assessment, planning, audit program development, execution of audit procedures, and communication of audit results and best practices to leadership.
- Determines compliance with IT policies and procedures.
- Performs analytical testing and review.
- Identifies internal control weaknesses and makes improvement recommendations.
- Performs Sarbanes-Oxley IT compliance work.
- Execute IC calculations at end of quarter.
- Develops and maintain effective working relationships with Internal Audit stakeholders.
- Assists in preparation of draft audit reports for management review.
- Participates in the continuous improvement of the Internal Audit department, including providing training and feedback related to audit activities.
Requirements
- Bachelor’s Degree in Information Technology, Cybersecurity, Information Systems, Computer Science, Business Administration, or related area
- Excellent written and oral communication skills, strong organizational and analytical skills, and project management experience
- Minimum of 2 years of professional experience, preferably including internal audit.
- Auditing work experience is preferred; however, business/operations experience may be deemed adequate
- Knowledge of the Sarbanes-Oxley Act and methodologies for achieving compliance
- Understanding of general auditing (GAAS) principals
- Strong interpersonal skills with ability to work closely with people at all levels of the organization
- Demonstrated ability and desire to improve individual performance and advance the efficiency and effectiveness of the department
- Ability to work in a highly complex environment under general direction
- Ability to effectively communicate audit issues and recommendations in both technical and non-technical terms to management.
- Working knowledge of general and application controls, systems/application development, business continuity and disaster recovery, and technology areas including networks, communications, operating systems, databases, cloud computing, web technologies, and information technology governance standards and industry best practices (e.g., ISO, NIST, ITIL, etc.)
Tech Stack
- Cloud
- Cyber Security