Senior Auditor

About The Position

Requirements

• Bachelor’s degree in information systems, Computer Science, Accounting, Cybersecurity, Data Analytics or a related field.
• Three years performing end-to-end IT and/or cybersecurity audits.
• One or more years of experience leading IT and cybersecurity end-to-end process and control walkthroughs.
• Passed at least one of the following CISA, CPA or CIA exams.
• Advanced level skill for Microsoft Office (Outlook, Word, PowerPoint, Excel), especially Excel.
• Demonstrated ability to clearly communicate verbally and in writing.
• Demonstrated ability to read and follow instructions.
• Ability to perform ad hoc data analysis in conjunction with audits, as necessary.
• Understanding of financial institution operations and transactions.
• Ability to communicate effectively and courteously.
• Ability to understand regulations.
• Understanding of the credit union data system and ability to use a computer, and software applications.
• Ability to recognize and analyze problems, improprieties, and opportunities for improvement.

Nice To Haves

• Master’s degree in information systems, Computer Science, Accounting, Cybersecurity, Data Analytics or a related field.
• Demonstrated understanding of how to apply IT control frameworks (e.g., NIST, COBIT, ISO 27001) in auditing.
• Demonstrated ability to assess risks, analyze complex systems, and identify control weaknesses.
• Strong written and verbal communication skills, with the ability to present to management with confidence.
• Demonstrated application of analytical thinking and synthesis of disparate information.
• Demonstrated ability to work autonomously and execute more than one audit engagement simultaneously.
• Achieved at least one of the following CISA, CPA or CIA certifications.
• Knowledge of computer assisted audit techniques preferred.
• Experience with data analysis software, such as ACL, IDEA, and/or Picalo, preferred.

Responsibilities

• Lead and perform audits of IT systems, applications, infrastructure, and cybersecurity processes.
• Execute all phases of the audit lifecycle, including planning, process walkthrough, risk assessment, fieldwork testing, and reporting.
• Evaluate and align third-party IT control frameworks as inputs to audit scope.
• Identify risks and control gaps, across MACU IT processes and systems.
• Contribute to IT audit entity risk assessments and development of the IT audit plan.
• Conduct and lead interviews with key MAC U IT personnel to gather required understanding of process and risks for advisory engagements.
• Provide insights into IT and cyber risk exposures, control design, and governance effectiveness.
• Recommend practical, risk-based solutions to improve IT controls, processes, and compliance posture.
• Prepare clear, concise audit documentation including work papers, findings, and audit reports.
• Prepare and communicate audit engagement status and observations to management and stakeholders.
• Track and validate remediation efforts to ensure timely resolution of audit findings.
• Contribute to continuous improvement of audit methodologies, tools, and data analytics capabilities.
• Stay current with emerging technologies, cybersecurity risks, and regulatory expectations.
• Support adoption of audit automation and GRC tools (e.g., Archer or similar platforms, if applicable in your environment).
• Partner with business, IT, Risk Management, and Compliance teams to enhance alignment across the Three Lines model.
• Serve as a trusted advisor while maintaining auditor independence and objectivity.
• Provide guidance and mentorship to Staff Auditors and interns.
• Review audit workpapers and ensure quality and adherence to standards.
• Assist managers in audit planning and stakeholder engagement.
• Maintain and develop competencies aligned with internal audit standards and professional development expectations.
• Uphold independence, objectivity, and ethical standards in all audit activities.

Benefits

• Hybrid Schedule (3 days in office, 2 days remote)
• Assistance with application, interview, or employment process available upon request