IT Auditor II

About The Position

Requirements

• Bachelor’s degree in MIS, Accounting, Finance, or related business field is preferred, however, 4 years of IT experience may be substituted.
• Competent working knowledge of various Microsoft Office software applications is necessary.
• Ability to navigate various systems to collect appropriate system evidence to perform testing.
• Behavioral characteristics include being resourceful and having intellectual curiosity.
• Demonstrates excellent problem-solving skills and ability to grasp concepts quickly, analyze data and draw sound conclusions based on one’s judgment is essential.
• Self-motivated and takes the initiative.
• Effectively prioritize assignments to meet deadlines and achieving maximum productivity through planning and organization skills.
• Excellent written and verbal communication skills, including effectively interacting with various levels of staff, management, and Board of Director’s Audit Committee members, to communicate audit findings.
• Ability to maintain professional composure, fairness, and sensitivity to others and promote a team environment.
• Demonstrates the Applied Knowledge competency level under the Performance section of the IIA Internal Audit Competency Framework.

Nice To Haves

• Previous IT audit experience not required.
• Previous financial institution experience preferred.
• Pursuit of a professional certification (e.g., CISA, etc.) once experience requirements are met is highly encouraged.

Responsibilities

• Perform independent, objective assurance and consulting activities designed to add value and improve the organization’s operations.
• Assist in accomplishing the organization’s objectives by bringing a systematic, disciplined approach to evaluate and improve risk management, control, and governance processes.
• Maintain the highest professional competency and integrity standards in conformance with the Institute of Internal Auditors’ International Professional Practices Framework, which includes the Code of Ethics and Standards for Professional Practice of Internal Auditing (Standards) and ISACA IT Audit and Assurance Standards.
• Continuously maintain independence and objectivity.
• Responsible for understanding and applying the Institute of Internal Auditors’ International Professional Practices Framework, which includes the Code of Ethics and Standards for Professional Practice of Internal Auditing (Standards) as well as ISACA IT Audit and Assurance Standards.
• Proactively prepare for the audit assignments by performing research and due diligence of the area in scope and developing client interview questions with no supervision from the Auditor-in-Charge.
• Identify and assess the variety of risk present in information technology general controls, business application systems, and related information technology supporting processes.
• Evaluate the potential for fraudulent activity.
• Identify and evaluate key controls designed to mitigate risks.
• Analyze information collected and draw conclusions based on professional judgment.
• Perform information technology audit assignments including information system general controls, configuration management, system development, change management, identity access management, cloud security and access permission testing with limited oversight by the AIC or IT Audit Management.
• Ability to interview and interact with clients without oversight from the Auditor-in-Charge.
• Document work papers and communicate clear and concise audit findings verbally and in written form in accordance with the Standards.
• Develop sufficient knowledge on information technology and information security best practices, as well as applicable policies/procedures, laws, and regulations in order to provide guidance to the team when in the Auditor-in-Charge role.
• Managing all audit phases (e.g., planning the scope of the review, execution of fieldwork, reviewing work papers and auditor’s judgment, draft report writing, conduct draft report meetings, prepare post-audit evaluations, etc.)
• Ensure the quality of work adheres to the Institute of Internal Auditors’ International Standards for Professional Practices of Internal Auditing (Standards).
• Establish open communication channels with assigned clients and participate in quarterly meetings, promoting risk management practices and developing specialized knowledge.
• Perform other duties and responsibilities as assigned.
• All employees and business units, as first line of defense, are expected to proactively help identify, assess, manage, and report risks within their domain of work.
• To enhance a healthy risk culture and support our growth for good pillar, employees will maintain vigilance in safeguarding our operations while ensuring compliance with regulatory mandates.
• The Risk team serves as the second line of defense by providing risk oversight and credible challenge whereas the Audit team serves as the third line of defense by providing risk assurance.
• Incumbent is expected to demonstrate each of the following VyStar Excellence behaviors in performing the duties and responsibilities of their job: Focus - Focus your full attention by carefully listening to and observing client or member. Connect - Consistently be friendly and approachable. Demonstrate your care. Understand - Listen empathetically and ask questions (70%/30% rule). Counsel - Recommend solutions based on your member’s needs and objectives. Advance - Ensure that member’s expectations were exceeded. Verify necessary follow-up actions.

Benefits

• competitive pay
• an excellent benefit package that includes a 401(k) Plan
• an extensive paid technical and on-the-job training program
• tuition reimbursement