Internal Information Technology Auditor

About The Position

Requirements

• 3+ years of experience performing IT auditing, including Cyber Security, IT Operations, SOX, ITGC, ITAC, or IPE testing
• 2+ years of experience performing SOX IT audits, such as IT General Controls and IT Application Controls
• Experience preparing work papers or work products, including audit plans, process documentation, test plans, or audit reports
• Experience applying critical thinking and problem-solving techniques during audit planning and fieldwork
• Knowledge of auditing processes, internal controls, accounting standards, SOX, and process and system documentation techniques, and major IT control frameworks, including NIST, ISO, or COBIT
• Ability to prepare clearly written communications and work products and verbally present and discuss work products, issues, and ideas
• Ability to pay strict attention to detail to ensure accuracy and quality of wor,k, and manage and prioritize tasks and deadlines across multiple projects simultaneously
• Ability to organize and direct the work of others to meet project objectives and maintain quality
• Bachelor's degree in Information Systems, Computer Science, Finance, Accounting
• U.S. citizen ship is required

Nice To Haves

• Knowledge of IIA professional auditing practices and standards
• Knowledge of data analytics and visualization methods
• Ability to leverage the power of data analytics
• CISA or CRISC Certification

Responsibilities

• Execute risk-based IT audits to identify weaknesses in cybersecurity and IT operations controls.
• Assess areas such as user access management, network security, data management, operating systems, databases, and IT resilience.
• Analyze risks in cloud platforms like AWS and Azure, as well as third-party SaaS tools, and recommend remediation strategies.
• Collaborate with IT and business teams to evaluate compensating controls and ensure risk mitigation.
• Perform audits of ITGCs, including logical access, user management, and privileged user reviews.
• Review change management controls for proper authorization, documentation, and testing of system changes.
• Assess IT operations controls related to backups, system availability, and incident response.
• Test automated application controls, key system interfaces, and reconciliation processes for data integrity and financial reporting accuracy.
• Communicate audit findings clearly, documenting results and providing actionable recommendations.
• Support audit reporting for senior stakeholders and facilitate SOX compliance with process owners and external auditors.

Benefits

• health, life, disability, financial, and retirement benefits, as well as paid leave, professional development, tuition assistance, work-life programs, and dependent care.
• recognition awards program acknowledges employees for exceptional performance and superior demonstration of our values.