IT Auditor

About The Position

Requirements

• University degree in Information Technology, Business, Accounting, or Computer Science
• Minimum 2 years of experience assessing IT risks, business process controls, or Internal Controls over Financial Reporting, with a focus on IT security, IT General Controls (ITGC), and IT Application Controls (ITAC).
• Knowledge of IT architecture and network design, operating systems, database management systems, statistics, modelling, and data analytics tools
• Understanding of business processes (e.g. Finance/Accounting, Procurement, Sales, etc.)
• Knowledge of business and accounting information systems (Accounting, Billing, Payroll, ERP systems such as Oracle)
• Advanced MS Office skills specially in Excel and PowerPoint an asset
• Experience with various audit methodologies and frameworks such as COSO, COBIT, ISO 27000 series, ITIL, and NIST.
• Understanding of analytics-oriented programming languages (e.g., SQL, Python) is desirable.
• Completion or in the process of completing one or a combination of the following designations: CISA, CPA, CISSP, CISM
• Analytical Skills: Ability to analyze data through MS office suite, Alteryx Designer and/or Power BI
• Communication Skills: Ability to convey complex technical details in simple terms to stakeholders.
• Attention to Detail: Ability to identify SOX/operational findings and process improvements and perform root-cause analysis to provide adequate recommendations for management consideration.
• Ability to work in a fast-paced environment, exhibiting flexibility, ability to multitask and manage multiple projects simultaneously and to adjust to competing and/or rapidly changing priorities.

Nice To Haves

• Advanced MS Office skills specially in Excel and PowerPoint an asset
• Understanding of analytics-oriented programming languages (e.g., SQL, Python) is desirable.

Responsibilities

• Assisting the team in conducting the annual SOX compliance audit and Technology audit/advisories on an ad-hoc basis.
• Offering guidance to stakeholders regarding SOX governance, refining SOX/operational controls, and enhancing processes across all Rogers IT/Business Units.
• Supporting the planning, execution, and reporting of audit engagements as outlined in the risk-based annual audit plan, which also involves the Sarbanes-Oxley Act (SOX) 404 compliance program.
• Assisting with the scoping and execution of risk-based audits operational, IT, and compliance areas to meet the objective of the annual Internal Audit plan.
• Performing additional engagements to support the annual SOX audit, IT Internal audit, and the assessment of IT/IT process controls in corporate transformation projects.
• Assisting in developing and implementing continuous audit techniques, using data analytics to monitor and assess risks on a real-time or ad-hoc basis.
• Compiling critical documents, encompassing the engagement memo, report on findings, and any supplementary communications for primary stakeholders.
• Assisting with the development of risk-based audit programs to assess the design and operating effectiveness of controls.
• Compiling audit findings, offering actionable recommendations, and creating detailed reports for management and relevant stakeholders.
• Reviewing new and existing systems to ensure the adequacy of controls, security, data integrity and transformation issues and project management assessments.
• Staying updated on emerging regulatory changes and standards, ensuring the organization remains compliant.
• Performing risk-based IT audits across technology environments, ensuring alignment with strategic priorities and regulatory requirements.
• Preparing IT audit deliverables (working papers, memos, reports) in accordance with IIA standards and internal audit methodology.
• Developing value-added, practical recommendations for IT and business partners.
• Supporting the execution of multiple IT audit engagements by managing assigned tasks and meeting established deadlines.
• Assisting senior audit leadership in delivering high-quality IT audit results.
• Partnering with IT, security, business, and operational teams to address risk areas/vulnerabilities, non-compliance, or other areas of concern.
• Regularly communicating with auditee to obtain findings status and verify the successful implementation of recommended changes.
• Engaging with internal stakeholders and external auditors, providing necessary data, insights, and support as required.
• Maintaining open communication with audit leaders to provide updates on audit progress and any issues encountered during the engagement lifecycle.
• Providing knowledge and insight on potential risk in business/IT process areas and driving the importance of risk management and governance across the organization.
• Completing and managing a personal professional development plan, taking full responsibility for establishing and maintaining regular coaching meetings with the direct leader.
• Demonstrating significant progress and achievement of development goals.
• Actively keeping abreast of changes and improvements in professional standards and industry best practices, applying new knowledge to improve team performance and audit processes.

Benefits

• Up to 50% off Rogers Services and Blue Jays Tickets
• 25% off TSC items
• 20% discount on all wireless accessories sold in Rogers stores.
• Company matching contributions to charities you support
• Self-driven career development programs (E.g. MyPath program)
• Rogers First: priority in applying to internal roles of interest
• Homewood employee & family assistance program
• Cognitive Behavioural Therapy (CBT) & Virtual therapy sessions
• Low or no-cost fitness membership with access to virtual classes
• Work for an organization committed to environmental protection
• Strong commitment to diversity and inclusion with employee resource groups supporting equity-deserving groups including groups representing People of Colour, 2SLGBTQIA+, Indigenous Peoples, Persons with Disabilities and Women.