Senior Auditor

About The Position

Requirements

• Knowledge and experience with OSD FIAR audit readiness requirements.
• Understands audit processes to include audit observations, walkthroughs, and coordination of audit meetings to include service providers.
• Strong RMF and FFMIA experience.
• Knowledge of SOC 1 Reports with understanding of Complementary User Entity Controls (CUEC).
• Minimum of 4 years of audit, accounting, or financial and management advisory services experience.
• Proficient knowledge of GAAP, GAAS, federal regulations, guidelines, standards and concepts, or other relevant industry practices pertaining to the engagement.
• Knowledge of system-oriented audit experience (FFMIA, FISCAM, USSGL, SFIS, FFMSR, FASAB, OMB Circular A-123 and IT NFR) with two years’ experience required.
• Extensive practical knowledge in importing data for use in report software, spreadsheets, graphs, and flow charts.
• Strong verbal and written communication skills.
• Security Clearance (Secret)
• 8570 Compliant
• Bachelor’s degree in Accounting, Finance, Information Systems, Computer Science, or related field with at least four (4) years of relevant audit, accounting, or financial advisory services experience;
• or Master’s degree with at least two (2) years of relevant experience.
• Must obtain and maintain a Secret level security clearance.
• Must maintain DOD 8570 required certification, CompTIA Security+ or equivalent.
• Must be able to work onsite as needed at government or contractor facility locations

Nice To Haves

• Knowledge of NIST SP800-53, CNSSI 1253, ICD 503 with 1-year experience preferred.
• Experience with Identity, Credential, and Access Management (ICAM) implementations.
• Configuration Management Database/Enterprise Integration (CMDB/EI) experience.
• System Information and Event Management (SIEM) experience.
• Experience coordinating with financial statement audit resources and integrated process teams.
• Experience with SAF/FM initiatives and Department of Defense financial management processes.

Responsibilities

• Lead audit initiatives to include tracking of external/internal audit request, observations, and walkthroughs.
• Lead FFMIA and FISCAM related activities such as evaluating Access, Security, Configuration Management, Segregation of Duties, Contingency, and Business Application controls.
• Analyze systems for compliance to OSD FIAR Guidance.
• Analyze software systems and document requirements per FIAR methodology.
• Monitor, track and obtain accurate and complete PBC request from internal and external auditors.
• Review and evaluate computer-based systems, audit general and application controls in complex information technology environments and perform other duties relevant to the engagement.
• Conduct assessments, identify weaknesses, provide recommendations, and lead organization to close open audit findings from internal and external auditors.
• Assist with ongoing implementation of SAF/FM initiatives to include Identity, Credential, and Access Management (ICAM), Configuration Management Database/Enterprise Integration (CMDB/EI), System Information and Event Management (SIEM) and System Security.
• Coordinate efforts with financial statement audit resources and other integrated process teams focused on improving client’s back-office operations including contracting, supply chain/asset management, and human resources.
• Assist with “assertion” packages (auditability achievement) for any system changes.
• Assist program and project personnel in the Financial Management Process within life cycle management of specified systems.
• Analyze and verify requirements for completeness, consistency, comprehensibility, feasibility, and conformity to standards for procedures, guides, templates, and forms.
• Effectively communicate with program and project personnel conveying expertise in a format that can be understood and is accepted by all personnel.
• Prepare and deliver reports, recommendations, or alternatives that address existing and potential trouble areas in financial systems across the organization.