IT Audit Senior

UHY•Maplewood, MO

16h•Onsite

About The Position

As a Technology Risk and Compliance (TRC) Senior, you will focus on helping clients understand and mitigate their technological and cybersecurity risks, in addition to building and maintaining positive client relationships. The TRC team’s service offerings include SOC 1®, SOC 2®, PCI, ISO 27001, HIPAA, and many other IT risk and control frameworks. There are numerous consulting opportunities related to assessing IT and cybersecurity risks for multi-national and local clients. You will build fundamental knowledge and technical skills to be successful in the growing field of Information Technology Risk and Compliance services.

Requirements

Bachelor's degree in accounting, information systems, or similar with an interest in information technology.
A minimum of 2 – 4 years of related internal audit and IT audit experience.
Must have a desire to work toward achieving one or more of the following certifications: Certified Public Accountant (CPA), Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM).

Nice To Haves

ISACA's globally recognized cornerstone certification for IS, audit, control, assurance, and security professionals who control, monitor, and assess an organization's information technology and business systems.
An independent information security certification governed by the International Information Systems Security Certification Consortium, also known as ISC², which provides security training to information assets.
ISACA's certification program for those who manage, design, oversee, or assess an enterprise's information security.

Responsibilities

Work directly with IT Audit Managers and clients to gain an understanding of the client’s IT systems, infrastructure, and control environment.
Apply that understanding to a variety of IT risk and control frameworks such as SOC, PCI, HIPAA, ISO, FFIEC, NIST, CIS Security and many others.
Understand the clients and their stakeholders to assist with an independent assessment of their IT risks and be involved with developing various types of reports and presentations to stakeholders.
Working directly with IT Audit Managers to develop and follow audit plans to evaluate the design and operational effectiveness of client controls.
Clearly document the procedures, results of tests, and conclusions performed during control testing.
Work with junior level staff and interns to provide training and support throughout the course of engagements. Review their work and provide feedback.
Ensure quality control procedures are being executed under direction of engagement supervisor, and perform thorough self-review of all work prior to submission.
Track time and maintain designated chargeable hours for the year.
Supervise IT Audit Staff and interns throughout engagements. Review their work and provide feedback to the staff and to the IT Audit Managers.