IT Auditor I

About The Position

Requirements

• Must possess strong written, verbal, and presentation skills.
• Self-motivated with strong interpersonal, communication and analytical skills.
• Must have effective project management capabilities.
• Understanding of financial audit principles and the Sarbanes-Oxley Act or Model Audit Rule Act.
• Strong desire for continuous learning regarding privacy and security regulations and frameworks.
• Effectively interface with external contacts, Brotherhood employees, managers, and department staff members.
• Bachelor's degree, preferably in IT, business administration, or accounting desired.
• At least one year of external and/or internal information technology, auditing or GRC experience is desired.

Nice To Haves

• Progression towards Certified Information Systems Auditor (CISA) and/or Chartered Property and Casualty Underwriter (CPCU) designation is desired.

Responsibilities

• Learn and participate in the risk and control consulting for IT and business departments with understanding and fulfilling their responsibilities related to IT governance, risk, and compliance.
• Assist with assigned tasks from the IT Audit Plan as directed by team lead and management.
• Assist with the policy update and review process to ensure policies comply with industry standards and corporate needs.
• Gather assigned risk metrics for the controls framework to be reported to Senior Management, create necessary documentation.
• Perform compliance activities with Legal and Compliance departments as directed by the team lead and management.
• Perform assigned vendor risk management activities.
• Learn the process for using the risk register for cyber risks affecting the business and participate in the analysis and documentation processes.
• Follow the company’s ERM approach to evaluating risks and ensure the organization’s risk posture is within the risk tolerance limits.
• Assist with external audit activities assigned by team lead and management.
• Complete other projects as assigned.