Staff Auditor-Information Technology 746555

JobSummary

Plansdevelops and conducts independent information technology audits.Conducts regulatory controls testing (e.g. SarbanesOxley controlstesting).

Coordinates administration of technology systems used inthe audit process. Performs data analysis to identify data patternsand determine any system issues.

Provides guidance and expertise toteam members. Works under minimal supervision and completesassignments independently under the general direction of moreexperiencedauditors.

KeyAccountabilities

• Plansand executes information technologyaudits
• ConductsSarbanesOxley controls testing and / or other required regulatorytesting (e.g. North American Electric Reliability CorporationCritical Infrastructure Protection (NERCCIP)etc.)
• Ensuresdocumentation supports conclusions and conforms to requiredstandards
• Accumulatespertinent data organizes material uses sampling techniques querytools and software analysis tools and utilizes data analytics onnoncomplexaudits
• Partnerswith clients to help provide guidance on internal controlstructures information security information privacy processefficiencies and reengineeringinitiatives
• Keepsabreast of technology trends and standards to ensure appropriatecontrols
• Developsand conducts formal and informal presentations at various levels ofauditresults
• Coordinatesadministration of information technologysystems
• Workswith internal and external teams in a collaborative environmentduring auditprocess

MinimumEducation & ExperienceRequirements

• Thisis a dualtrack base requirement job; education and experiencerequirements can be satisfied through one of the following twooptions :
• Bachelorsdegree in information technology business engineering orsciencerelated discipline and 3 years of experience in informationtechnology information technology audit information technologycompliance and / or risk assurance;OR
• Associate s degree in an information technology business engineering orsciencerelated discipline with 5 years of experience in informationtechnology information technology audit information technologycompliance and / or riskassurance
• Certificationas certified internal auditor (CIA) certified information systemauditor (CISA) or similar professional certification (e.

g.certified information systems security professional(CISSP) ) or completion within two years of date hired intorole.

OtherQualifications

Analytical and problemsolving skills

Organizationalskills and good oral / written communication skills

Knowledge of information technologyprocesses / methodologies

General understanding ofinformation technology standards and processes (i.e. emergingtechnologies architectures systems design systems integration andautomated controls)

Ability to quickly learn newtechnology environments processes frameworks andtechnologies

Ability to work independently

Ability to work collaboratively on a team and build strong workingrelationships

Ability to manage small noncomplexprojects

Ability to participate in effective meetingsand protect confidential information

Computerproficiency including basic Microsoft office software skills

Possesses a valid drivers license and meets companydriving standards inclusive of providing own transportation withinthe servicearea

Preferred

Experience with business operations systems cybersecurity network / database engineering controls / risk assessmentsinformation security and privacy and / or regulatorycompliance

Bachelors degree in computer science information systems oraccounting informationsystems

Formal training in continuous improvementprocesses

AdditionalInformation

Incumbentsmay engage in all or some combination of the activities andaccountabilities and utilize a variety of the competencies cited inthis description depending upon the organization and role to whichthey are assigned.

This description is intended to describe thegeneral nature and level of work performed by incumbents in thisjob. It is not intended as an allinclusive list of accountabilitiesor responsibilities nor is it intended to limit the rights ofsupervisors or management representatives to assign direct andcontrol the work of employees under theirsupervision.