Senior IT Auditor

Senior IT Auditor

All potential candidates should read through the following details of this job with care before making an application.

About the Opportunity

Northeastern University's Audit & Advisory Services is seeking a motivated and talented individual to join our team as a Senior IT Auditor.

This is an exciting opportunity to join our team of skilled professionals that work collaboratively throughout the University as a trusted partner.

The team consistently delivers high-quality results in a challenging and fast-paced environment.

Working in a strong and established team and reporting to the IT Audit Manager, the Senior IT Auditor will participate in all phases of assigned audits, from planning to reporting.

They will skillfully conduct and successfully execute a range of challenging audit work including executing audits from the annual audit plan, advisory projects, leading audit client engagements, assist in developing data analytics procedures (e.

g. Power BI, Tableau, etc.), and developing a robust IT audit program. The Senior IT Auditor will be familiar with new areas of focus for technology audits : process automation, artificial intelligence, while continuous monitoring / auditing continues to evolve.

As a trusted partner and integral team member, the Senior IT Auditor :

• Maintains the highest level of professional and ethical standards as expressed in Audit & Advisory Services' Audit Charter and the IIA's International Professional Practice Framework (IPPF).
• Builds effective relationships with all levels of stakeholders across our campuses.
• Provides value-added professional audit work, individually or as a collaborative team member, in conducting reviews of assigned organizational activities in accordance with the IIA and department standards.
• Plans and executes information technology (IT) audit projects designed to provide assessment of internal control processes and operational performance.
• Demonstrates and applies a thorough understanding of complex information systems.
• Prepares detailed plans for performing individual audits including the identification of key risks and controls, determination of audit objectives, and development of an appropriate audit program.
• Under minimal supervision, develops clear and concise audit work papers to support findings and recommendations, and writes clear and concise reports for management.
• Identifies potential audit areas, assists with assessing the degree of inherent risk, and estimating the time and skills required to complete audit projects.
• Performs or assists in performing special projects or studies, including risk assessments, fraud investigations, audit department policy updates, due diligence acquisition reviews.
• Participates in reviews of internal controls and security of systems under development as well as major IT projects and initiatives.

Key Responsibilities

IT Audits

• Perform IT audits including reviews of system development, program changes, operating systems, databases, applications software, data security, computer operations, network security, business continuity, and disaster recovery.
• Perform pre- and post-implementation reviews for new or modified application systems to assess project management, data integrity and security controls.
• Audit work performed must adhere to the Institute of Internal Audit's (IIA) Standards for the Professional Practice of Internal Auditing.
• Develop and maintain relationships with Information Technology Services management.

Non-IT Audit, Consulting and Special Projects

• Perform integrated audits as necessary to carry out the annual audit plan.
• Under the supervision of audit management, perform consulting engagements and investigations as assigned.
• Assist in developing data analytics procedures using Microsoft Excel, PowerBI and other tools (e.g. Tableau) for automating and performing routine operational and financial audit tasks.

Experience Required

• Minimum of three years' experience in IT auditing, or Information Security assurance / consulting.
• Bachelor's Degree in Management Information Systems, Information Security / Assurance, Computer Science, or a related discipline.

Master's degree is a plus.

• Certification as CIA, CISA, CISSP, CISM preferred or working towards.
• Knowledge or experience with security and technology frameworks (e.g. NIST, CMMC).
• Knowledge of data analytics and tools such as Tableau, Cognos, or Power BI.
• Proficient with Microsoft Office applications including Word, Excel, Power Point and Visio.
• Demonstrated ability to work independently and as part of a project team.
• Excellent interpersonal, written, and verbal communication skills.

Position Type : Legal and Regulatory Administration

Additional Information

Northeastern University considers factors such as candidate work experience, education and skills when extending an offer.

Northeastern has a comprehensive benefits package for benefit eligible employees.

To apply, visit this link.

J-18808-Ljbffr