Senior Information Systems Auditor- Term Limited

About Our Job

The Auditor's Office is an independent agency of the City and County of Denver. We deliver independent, transparent, and professional oversight to safeguard the public’s investments in the City and County of Denver.

The Auditor has authority under the Denver Charter to audit Denver’s agencies in accordance with generally accepted governmental auditing standards (GAGAS).

Our in-depth audit reports are issued each month to the public through Denver’s independent Audit Committee. These reports look at how efficient and effective the city’s services and programs are for the people of Denver and provide recommendations for improvement.

Our work is performed on behalf of everyone who cares about the city, including its residents, workers, and decision-makers.

We provide a dynamic and collaborative work environment, excellent benefits, and professional development and continuing education opportunities for our employees.

The City and County of Denver Auditor's Office is seeking a Senior Information Systems Auditor with strong auditing skills and an ability to work independently.

Under the general direction of the assigned Information Systems Audit Manager and / or Information Systems Audit Lead, the Senior IS Auditor will conduct performance, IT, and compliance audits, and be responsible for supporting the organization's vision, goals, and objectives.

The Senior Information Systems Auditor will be responsible for performing full performance, professional-level auditing work of information systems, general controls, application controls, information systems, processes, procedures, and methodologies, in accordance with generally accepted government auditing standards.

They will review and evaluate financial and operational records for adequacy of internal controls and compliance with policy, Denver Revised Municipal Code (DRMC) rules and regulations, Denver City Charter, and applicable statutes.

Responsibilities include planning, completing business process and internal control review engagements, and writing audit reports.

Specific responsibilities include, but are not limited to, the following :

Conducts information technology audits and evaluates city organizations and programs that include, but are not limited to, effectiveness, efficiency, public policy assessment, governance, and internal control and compliance objectives as defined by generally accepted government auditing standards and other standards used in IT audits.

Evaluates organizational operations and / or program results for potential areas of improvement such as operational efficiency, technology optimization, decreased turnaround times, streamlining of processes, and improved customer service with the goal of providing maximum value for resources expended.

With limited supervision, designs various auditing tests, including data analytics, to determine the reliability, integrity, and internal control of the financial and operational systems for compliance and performance purposes.

Contributes to the identification of risks and the development of risk assessments for IT audits.

Determines the extent of compliance with IT policies and procedures.

Assists with monitoring third-party contractors conducting IT and cybersecurity audits.

Applies relevant IT audit and security frameworks such as NIST, FISCAM, COBIT, ISO, etc. while conducting IT audits and integrated audits.

Gathers, examines, and analyzes information about the organization to be audited using best practices and performance benchmarks that are applicable to that organization.

Prepares detailed audit reports with recommendations for corrective action applying professional judgment and interpretation of applicable IT audit and security frameworks, rules, and standards.

Maintains work papers, schedules, and reports and provides documentation to support audit findings and recommendations.

Effectively and clearly communicates information to various audiences and possess strong interpersonal skills.

Ability to develop and conduct oral presentations of audit findings and recommendations.

Ability to work independently and as part of a team

Performs other related duties as assigned or requested.

About You

Our ideal candidate will far surpass our minimum qualifications by possessing :

In addition to the required CISA certification within one year of job start, we value other IS / IT certifications such as CISSP, GIAC, etc.

Experience in government performance, financial, IT, compliance, and contract audits.

Three or more years of IT auditing experience.

Knowledge of information technology areas, such as information security, cloud computing, IT general controls, configuration management, change management, IT operations, data backup and recovery, and network controls.

Knowledge of IT best practices as described in FISCAM, NIST, ISO, PCI-DSS, CJIS, ITIL, etc.

Practical experience conducting data analysis using software tools such as PowerBi, Arbutus, ACL, SQL, or Python.

Familiarity and experience with GAGAS.

A graduate degree.

Experience with Diligent One or other audit management software.

We realize your time is valuable, so please do not apply if you do not have at least the following required minimum qualifications :

Education Requirement : bachelor’s degree in accounting, business administration, finance, information systems, public administration, government analytics, or a directly related field.

Experience Requirement : Two (2) years of general senior level professional experience auditing and evaluating information technology business practices and processes to ensure compliance and efficiency.

Education & Experience Equivalency : No substitution of experience for education is permitted. Additional appropriate education may be substituted for experience requirements.

Licensure & Certification : CISA certification or acquire within one year of date of hire. Licenses and certifications must be kept current as a condition of employment.

For more information about the Auditor’s Office, please visit our website at .

Starting Pay

Although our full pay range is listed above, the anticipated hiring range for this position is between $103,630.00 and $ 132,602.

00, dependent upon experience and education.

About Everything Else

Job Profile

CV3296 Internal Auditor Information Systems Senior AO

To view the full job profile including position specifications, physical demands, and probationary period, click .

Position Type

Limited (Fixed Term)

Position Salary Range

$89,144.00 - $147,088.00

Starting Pay

The anticipated hiring range for this position is between $103,630.00 and $ 132,602.00, dependent upon experience and education.

Agency

Auditor's Office

For information about right to work, click for English or for Spanish.