IT Audit Senior

About The Position

Requirements

• Bachelor’s degree in Information Systems, Cybersecurity, Accounting, or a related field.
• Minimum of 2 years of experience performing IT audits or IT risk assessments.
• Hands-on experience conducting IT audits in a federal environment.
• Strong understanding of risk management and internal controls across technical and administrative systems.
• Excellent written and verbal communication skills, with the ability to document and explain complex IT processes clearly.
• Strong project management and time management skills with the ability to meet tight deadlines.
• Must be able to pass a basic government suitability check (US Citizenship required).

Nice To Haves

• CISA certification preffered.
• Solid understanding of federal IT environments, including system architecture, security frameworks, and compliance standards.
• Experience auditing or working with systems such as: Mainframe systems, Microsoft environments (Active Directory, Windows Server, Azure), Amazon Web Services (AWS), Oracle databases and ERP systems
• Ability to assess and document administrative and technical controls across diverse platforms.
• Familiarity with FISCAM, NIST SP 800-53, and FISMA frameworks.

Responsibilities

• Lead Process Walkthroughs: Facilitate client meetings to assess IT systems, applications, and controls.
• Engage Directly with Clients: Serve as a key liaison, building trusted relationships and maintaining open, professional communication throughout the engagement.
• Identify and Communicate Risk: Analyze IT environments, pinpoint control gaps, and clearly present associated risks and recommendations.
• Defend and Support Findings: Lead discussions to support audit conclusions with evidence and detailed analysis.
• Review Audit Workpapers: Evaluate staff-prepared documentation for accuracy, completeness, and compliance with audit standards.
• Mentor and Support Staff: Provide guidance, technical direction, and feedback to junior team members to strengthen their professional development.
• Apply Federal IT Compliance Frameworks: Utilize working knowledge of federal standards and guidance, including: FISCAM (Federal Information System Controls Audit Manual), NIST SP 800-53 (Security and Privacy Controls for Federal Information Systems), FISMA (Federal Information Security Modernization Act)

Benefits

• You’ll gain hands-on experience, mentorship, and exposure to challenging and meaningful work that supports the public good.
• We offer a supportive environment that encourages learning, teamwork, and professional excellence.