Sr IT Internal Auditor

About The Position

Requirements

• Minimum of two (2) years of progressive experience, in IT Audit, IT Compliance, IT Internal Audit or related experience
• Knowledge and experience with Sarbanes-Oxley, evaluating the design and effectiveness of processes and controls over system development/change management, logical and physical access, data monitoring, data integrity/accuracy and completeness, as well as IT infrastructure security.
• Knowledge of internal control and compliance frameworks (specifically COSO, COBIT, NIST, SOX) and hands-on experience applying the frameworks to design controls that are operationally effective across multiple compliance program.
• Bachelor's degree in information systems, computer science, accounting, or related field.
• Candidate should possess or be interested in pursuing certification as a CISA, CRISC, CISSP, CIA, or CPA.
• Ability to travel 15% of working time

Nice To Haves

• Big 4 Public Accounting experience with Fortune 500 clients
• Consulting experience providing IT audit services is highly preferred
• Experience auditing Oracle JDE E1 ERP environments is highly preferred
• Experience with internal audit GRC tools, i.e. Workiva
• CPA, CIA, CISA, or other relevant professional certification (or actively working towards achieving certification)
• Knowledge and experience of cloud-hosted architecture (e.g., Microsoft Azure/AWS) and the risks associated with the various layers.

Responsibilities

• Support IT SOX, operational audits, and technology risk assessments from planning through execution and reporting
• Lead risk-based operational audits including risk assessments, IT operational process reviews, integrated audits and system implementation reviews related to technology risks, including cloud, cybersecurity and privacy risks
• Lead control gap assessments of new and enhanced products, supporting systems, process changes, system architecture and implementations
• Serve as a risk advisor to assess new products, systems, databases or changes to existing processes to identify financial and operational risks before launch, providing recommendations for improvement
• Lead and coordinate SOX program testing IT controls with the co-sourced team, external audit team members, control owners, managers and executive management
• Lead benchmarking and control rationalizations to improve controls, make processes more efficient, effective, and/or reduce cycle time for SOX IT compliance
• Develop relationships with key partners as their risk advisor on internal controls and process efficiencies, providing insight and direction in regard to financial and operational risk
• Continuously help improve the company's ability to mitigate risks and develop recommendations on how to integrate controls as part of daily operations
• Perform other related duties as required