IT Audit Senior

About The Position

Requirements

• Bachelor’s degree
• 3+ years IT audit experience (operational audits and SOX)
• 2+ years SOX ITGC experience
• Knowledge of IT processes: network, cloud security, OS, applications, databases, information security
• Knowledge of AICPA/IIA standards, COSO, and COBIT frameworks
• Working knowledge of common OS (Windows, UNIX/Linux), databases (SQL, Oracle), and ERP systems (SAP, JDE, Sage 100)
• Strong verbal and written communication skills—able to lead discussions, present findings, and engage stakeholders at all levels
• Strong project management skills—plan timelines, coordinate stakeholders, track deliverables, escalate proactively
• Attention to detail with disciplined self-review of work product
• Ability to internalize feedback and carry lessons into future work

Nice To Haves

• IT operational audit experience (Cloud Security, Vulnerability Assessment, SDLC, BCP/DR)
• CISA, CIA, or CISSP certification
• Energy/Utilities industry experience
• Familiarity with AuditBoard and data analytics tools
• Experience with AI-powered audit and productivity tools
• French and/or German language skills

Responsibilities

• Develop risk and control matrices, audit approaches, and test procedures. Manage project timelines, coordinate with stakeholders, and proactively communicate status and deadlines to audit management.
• Execute test procedures and create concise, precise workpapers. Verify accuracy of all work product—including control owner assignments and data references—before submitting for review.
• Validate exceptions with auditees, collaborate on root cause analysis and remediation. Align with audit management on approach and messaging before drafting deliverables. Initiate discussions when timelines are at risk.
• Provide guidance to team members and lead project elements as needed.
• Schedule and lead walkthroughs with control owners to understand IT processes and the control environment. Execute ITGC test procedures and document conclusions in workpapers.
• Communicate and validate deficiencies with auditees, external auditors, and the audit team. Align with management before changing stakeholder commitments or deadlines.
• Maintain ongoing awareness of ITGC status throughout the SOX cycle by communicating regularly with KPMG, control owners, and the Internal Controls & Compliance Team. Follow up on remediation actions.
• Identify opportunities to enhance audit processes through automation and AI tools (e.g., Claude, data analytics platforms). Champion continuous improvement.
• Ad hoc projects, audit tool administration, time reporting, one-on-ones, and CPE requirements.

Benefits

• Medical, Vision, and Dental Plans
• Optional Health Savings Account
• Optional Dependent Care Savings Account
• Paid Maternity/Paternity Leave
• Work from home policy
• Employee Assistance Program
• 401K with a generous company match
• Tuition Reimbursement
• Assistance with Professional Credentialing
• Referral Bonuses
• Employee Discount Programs