Sr. IT Auditor

Carnival Corporation•Miami, FL

11h•Hybrid

About The Position

The IT Senior Auditor will assist in planning, execution, and reporting for IT audits, including SOX IT General Controls (ITGC) interim and update testing. This includes assisting with the performing the design, planning and execution of assigned audit engagements, and completion of annual SOX assurance activities, and coordinating RAAS efforts with IT Management. The applicable entities covered encompass North America operations and certain operations across Carnival operating companies. Areas of focus include significant operational, compliance and IT risks. Essential Functions: Interfacing with management to develop an understanding of key business objectives, processes, and associated risks Partnering with management to develop appropriate solutions for opportunities identified Undertake relevant training, networking and studies as required to ensure continuing professional development. Adheres to Corporate Policies and Procedures, including Code of Conduct, Audit Procedures and any control related responsibility for financial data entered, stored, or reported via business systems within employee’s control (list not exhaustive). Ongoing Obligation Project Execution: Assist with the design and execution of independent RAAS reviews to evaluate the design and operating effectiveness of technology-related controls and IT operations to assess: The reliability and integrity of internal controls over and financial reporting for systems that authorize transactions and safeguard assets. Compliance with policies, laws, and regulations which could have significant impact upon IT operations and processes. Alignment with best practice frameworks to ensure protection of company systems and data. The effectiveness and efficiency of IT operations. Coordinate with RAAS Manager to ensure project scope and objectives are aligned with brand/ subject matter risks. Leverage technology (e.g. AI, Data Analytics, audit tools) to increase effectiveness and efficiency of IT risk coverage Clearly document testing details and conclusions in audit workpapers in adherence with professional auditing standards. Assist with managing assigned project budgets, coordinating with management to ensure action plans mitigate identified risks, and drafting audit reports to be presented to Sr. Management. Track management remediation activities and evaluate evidence of completion to ensure that risks are adequately addressed. Communication: Participate in / lead meetings with Sr. Management to discuss audit results and associated management actions to mitigate identified control gaps. Document results of audits in formal reports that are distributed to Sr. Brand and Corporate Management. Provide management regular updates on audit status and control enhancement opportunities. Coordination: Engage with and build professional relationships with Management team to keep abreast of emerging risks and changes. Collaborate with other RAAS auditors on corporate and cross-brand engagements as assigned. Knowledge, Skills & Abilities: Scope: The Senior participates in global IT Audit activities. The role provides advisory services and assurance that controls are designed well and operating effectively to mitigate IT Risks at Corporate and across the Brands (both shipboard and shoreside). The role is critical in supporting RAAS' mission to provide assurance to the Sr. Management teams and the Board of Directors, ensuring the Company maintains a sound control environment, and complies with laws and regulations. Problem Solving: Senior is routinely called upon to independently perform complex audits across a diverse technology environment and understand complex processes. Complex data analysis of both financial and operational data sets is routinely used to identify anomalies and interrelationships that could be an indication of risk manifestation. Given the Company's diverse technology platforms and processes, the Senior must be able to contribute to the development of pragmatic solutions to mitigate IT risks across a wide range of technologies. Impact: This role has a significant impact on helping to ensure diverse controls are designed well and operating effectively. This role is held to very high ethical standards and often has to communicate unpopular news / messages. As such, this individual must have solid understanding of IT risks and excellent communication skills. In executing their portion of the audit plan, the senior will be expected to comply with IIA Professional Standards, with Company Policies and Procedures (including RAAS P&Ps), and Carnival Corporation’s expected behaviors on its Culture Essentials. Leadership: No direct reports. Self-starter with strong interpersonal skills able to maintain relationships within the RAAS team, Management, and any third parties (as part of audits). Individuals must proactively identify roadblocks and issues, possess the ability to communicate key messages to management, and meet tight deadlines.

Requirements

Minimum 3-5+ years of work experience with either a Big Four accounting firm, large/complex internal audit department, and/or management consulting firm.
Bachelor’s degree in Accounting, Information Systems, Business, or related field.
Demonstrated ability to think strategically and align IT audit activities with relevant risks and business objectives.
Strong analytical and problem-solving skills and attention to detail.
Ability to work in and drive changes in complex organizations.
High integrity and commitment to ethical standards.
Strong IT risk and control understanding (including experience with executing end-to-end audit programs and tests of controls)

Nice To Haves

CISA, CISM, CPA, CIA or similar license preferred (or in progress).

Responsibilities

Assist in planning, execution, and reporting for IT audits, including SOX IT General Controls (ITGC) interim and update testing.
Assist with the performing the design, planning and execution of assigned audit engagements, and completion of annual SOX assurance activities, and coordinating RAAS efforts with IT Management.
Interfacing with management to develop an understanding of key business objectives, processes, and associated risks
Partnering with management to develop appropriate solutions for opportunities identified
Undertake relevant training, networking and studies as required to ensure continuing professional development.
Adheres to Corporate Policies and Procedures, including Code of Conduct, Audit Procedures and any control related responsibility for financial data entered, stored, or reported via business systems within employee’s control (list not exhaustive).
Assist with the design and execution of independent RAAS reviews to evaluate the design and operating effectiveness of technology-related controls and IT operations
Coordinate with RAAS Manager to ensure project scope and objectives are aligned with brand/ subject matter risks.
Leverage technology (e.g. AI, Data Analytics, audit tools) to increase effectiveness and efficiency of IT risk coverage
Clearly document testing details and conclusions in audit workpapers in adherence with professional auditing standards.
Assist with managing assigned project budgets, coordinating with management to ensure action plans mitigate identified risks, and drafting audit reports to be presented to Sr. Management.
Track management remediation activities and evaluate evidence of completion to ensure that risks are adequately addressed.
Participate in / lead meetings with Sr. Management to discuss audit results and associated management actions to mitigate identified control gaps.
Document results of audits in formal reports that are distributed to Sr. Brand and Corporate Management.
Provide management regular updates on audit status and control enhancement opportunities.
Engage with and build professional relationships with Management team to keep abreast of emerging risks and changes.
Collaborate with other RAAS auditors on corporate and cross-brand engagements as assigned.

Benefits

All non-sales roles participate in an annual cash bonus program, while sales roles have an incentive plan.
Director and above roles may also be eligible to participate in Carnival’s discretionary equity incentive plan.
Health Benefits: Cost-effective medical, dental and vision plans
Employee Assistance Program and other mental health resources
Additional programs include company paid term life insurance and disability coverage
Financial Benefits: 401(k) plan that includes a company match
Employee Stock Purchase plan
Paid Time Off
Holidays – All full-time and part-time with benefits employees receive days off for 8 company-wide holidays, plus 2 additional floating holidays to be taken at the employee’s discretion.
Vacation Time – All full-time employees at the manager and below level start with 14 days/year; director and above level start with 19 days/year.  Part-time with benefits employees receive time off based on the number of hours they work, with a minimum of 84 hours/year.  All employees gain additional vacation time with further tenure.
Sick Time – All full-time employees receive 80 hours of sick time each year.  Part-time with benefits employees receive time off based on the number of hours they work, with a minimum of 60 hours each year.
Other Benefits
Complementary stand-by cruises, employee discounts on confirmed cruises, plus special rates for family and friends
Personal and professional learning and development resources including tuition reimbursement
On-site Fitness center at our Miami campus