JobSummary
Plansdevelops and conducts independent information technology audits.Conducts regulatory controls testing (e.g. SarbanesOxley controlstesting).
Coordinates administration of technology systems used inthe audit process. Performs data analysis to identify data patternsand determine any system issues.
Provides guidance and expertise toteam members. Works under minimal supervision and completesassignments independently under the general direction of moreexperiencedauditors.
KeyAccountabilities
- Plansand executes information technologyaudits
- ConductsSarbanesOxley controls testing and / or other required regulatorytesting (e.g. North American Electric Reliability CorporationCritical Infrastructure Protection (NERCCIP)etc.)
- Ensuresdocumentation supports conclusions and conforms to requiredstandards
- Accumulatespertinent data organizes material uses sampling techniques querytools and software analysis tools and utilizes data analytics onnoncomplexaudits
- Partnerswith clients to help provide guidance on internal controlstructures information security information privacy processefficiencies and reengineeringinitiatives
- Keepsabreast of technology trends and standards to ensure appropriatecontrols
- Developsand conducts formal and informal presentations at various levels ofauditresults
- Coordinatesadministration of information technologysystems
- Workswith internal and external teams in a collaborative environmentduring auditprocess
MinimumEducation & ExperienceRequirements
- Thisis a dualtrack base requirement job; education and experiencerequirements can be satisfied through one of the following twooptions :
- Bachelorsdegree in information technology business engineering orsciencerelated discipline and 3 years of experience in informationtechnology information technology audit information technologycompliance and / or risk assurance;OR
- Associate s degree in an information technology business engineering orsciencerelated discipline with 5 years of experience in informationtechnology information technology audit information technologycompliance and / or riskassurance
- Certificationas certified internal auditor (CIA) certified information systemauditor (CISA) or similar professional certification (e.
g.certified information systems security professional(CISSP) ) or completion within two years of date hired intorole.
OtherQualifications
Analytical and problemsolving skills
Organizationalskills and good oral / written communication skills
Knowledge of information technologyprocesses / methodologies
General understanding ofinformation technology standards and processes (i.e. emergingtechnologies architectures systems design systems integration andautomated controls)
Ability to quickly learn newtechnology environments processes frameworks andtechnologies
Ability to work independently
Ability to work collaboratively on a team and build strong workingrelationships
Ability to manage small noncomplexprojects
Ability to participate in effective meetingsand protect confidential information
Computerproficiency including basic Microsoft office software skills
Possesses a valid drivers license and meets companydriving standards inclusive of providing own transportation withinthe servicearea
Preferred
Experience with business operations systems cybersecurity network / database engineering controls / risk assessmentsinformation security and privacy and / or regulatorycompliance
Bachelors degree in computer science information systems oraccounting informationsystems
Formal training in continuous improvementprocesses
AdditionalInformation
Incumbentsmay engage in all or some combination of the activities andaccountabilities and utilize a variety of the competencies cited inthis description depending upon the organization and role to whichthey are assigned.
This description is intended to describe thegeneral nature and level of work performed by incumbents in thisjob. It is not intended as an allinclusive list of accountabilitiesor responsibilities nor is it intended to limit the rights ofsupervisors or management representatives to assign direct andcontrol the work of employees under theirsupervision.