Information Technology Auditor

About The Position

Requirements

• 3-5 years of Information Technology auditing experience required, preferably at another financial institution or credit union.
• Bachelor's degree in Information Systems, Computer Science or a related field is required, but equivalent relevant work experience will also be considered.
• Understanding of networking concepts, cloud environments, cybersecurity controls, and system administration fundamentals.
• Ability to work with audit management software and data analytics tools. (e.g. Excel advanced functions, SQL, Power BI)
• Strong knowledge of cybersecurity processes and concepts, data governance, and application and infrastructure controls.
• Excellent analytical, problem-solving, and critical thinking skills.
• Strong verbal and written communication abilities.
• Robust knowledge of financial institution practices, risks, and the regulatory environment.
• Proficient in using Microsoft Office Suite and familiarity with data mining tools and practices.
• Ability to collaborate and build relationships with internal coworkers and peers.

Nice To Haves

• Professional certification preferred (e.g. CIA, CISA, CRISC).
• Attend national level audit training to support job requirements and maintain continuing professional education (CPE) requirements for relevant certifications, if applicable.

Responsibilities

• Perform and report on IT audits, including application controls, general controls, cybersecurity, and system implementations in accordance with the approved audit plan.
• Assess the adequacy and effectiveness of IT control design and operating effectiveness in accordance with frameworks such as NIST and CIS.
• Evaluate IT policies, procedures, and security configurations for compliance with internal standards and regulatory requirements.
• Assist in performing risk assessments to identify vulnerabilities and recommend improvements in IT governance, security, and operations.
• Prepare clear, concise, and well-supported audit workpapers and reports for management review.
• Coordinate and oversee third party service providers conducting specialized IT audits (e.g., penetration tests, GLBA Review).
• Review and challenge outsourced audit scope, testing methodologies, and results.
• Track and validate management action plans and remediation activities resulting from outsourced engagements.
• Support internal investigations into fraud or misconduct and member complaint investigations as assigned.
• Participate in integrated audit engagements where IT risk intersects with business processes.
• Assist in designing and implementing data analytics to support continuous auditing, automated testing, and enhanced audit insights.
• Assist regulatory examiners with the annual examination.
• Assist other internal auditors by providing IT expertise during operational, compliance, and financial audits.
• Serve as a department resource for technology related control questions or system evaluations.
• Contribute to the development and enhancement of Internal Audit workflows, templates, methodologies, and procedures.
• Identify opportunities to streamline processes and improve overall audit efficiency.
• Evaluate and respond to requests for investigations and special audits from CEO/Executive Team under the direction of the Supervisory Committee.
• Remain current on local, state, and federal regulations affecting the credit union, including NCUA, GLBA, and other technology related requirements, and stay informed on industry trends and best practices in internal audit and financial services.

Benefits

• paid time off
• health benefits
• 401(k) with a generous company match
• future growth opportunities within the company