Senior IT Auditor
About The Position
As a Senior IT Auditor and member of a collegial team, you will help support our audit and strategic plan by participating in the planning, scoping, execution, and reporting of audits based on dynamic risks. You will conduct technical audits by working with various business and IT partners across the Federal Reserve System and in doing so, you will gain valuable exposure to advanced systems and frameworks in areas such as cloud, agile (SAFe), cybersecurity, and DevSecOps. As a member of the Audit Team you will participate in developing meaningful insights that help our stakeholders achieve their business objectives by translating technical risks into business issues and providing practical recommendations for remediation. This position applies specialized knowledge of IT, cybersecurity, project management, and cloud to complete technical audit assignments and is considered intermediate level and performs work of moderate complexity. The incumbent works under general supervision and may take directions from a more senior team member. This job does not have any direct reports.
Requirements
- Bachelor’s degree in computer science, Information Management, IT, IS, Cybersecurity or commensurate specialized training, certification, or work experience
- Minimum one year of work experience
- Professional certification such as CISA, CIA, or CPA (in progress acceptable)
- One of the following professional certifications recommended: CRISC (Certified in Risk and Information Systems Control), CISM (Certified Information Security Manager), CIA (Certified Internal Auditor), Cloud, AI, or SAFe
- Intermediate knowledge conducting moderately complex IT audit fieldwork and preparing formal documentation or assessing risk and controls in moderately complex IT business operations
- Intermediate knowledge of IT audit methodologies and frameworks (IIA, NIST); including integrated audit techniques, project management approaches, risk, controls, and cloud concepts
- Intermediate analytical skills including sound business judgment and ability to think independently
- Effective written and verbal communication skills with the ability to influence peer leaders and business partners
- Strong attention to detail and organization skills
- Strong interpersonal relationship building skills
Responsibilities
- Conducts and document moderately complex IT audit fieldwork according to IIA standards, producing comprehensive workpapers and evidence documentation, ensuring workpapers are prepared in accordance with IIA standards
- Designs, evaluates and tests IT controls across business systems, application development activities, and business processes, leveraging an end-to-end, data-driven mindset (ex. key control/risk identification) and supports the identification of control gaps and contributes to risk assessment processes
- Identifies and analyze IT and cybersecurity risks, documenting impacts and recommending mitigation strategies
- Proactively performs follow-up reviews on previously reported findings to verify remediation effectiveness, producing closure documentation
- Serves as IT Audit Liaison for moderate risk business processes, coordinating between audit teams and business stakeholders
- Evaluates IT projects and programs to assess control effectiveness, governance, and risk management practices, delivering formal assessment reports
- Monitors key IT risk indicators for specific areas of responsibility, producing trend analyses and exception reports
Benefits
- medical
- dental
- vision
- prescription drug coverage
- 401k savings plan
- retirement plan
- paid time off
- transit benefit
- onsite gym
- subsidized cafeteria
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
