Senior Auditor, Internal Audit, IT

Job Summary/Overview

The Senior Auditor, Internal Audit, IT will be responsible for the execution of high quality, risk-based IT audits inclusive of SOX 404, SOC 1, assessments to support M&A activities, and IT Operational and Systems audit engagements. This encompasses assisting in the planning, evaluation, and reporting phases of audit engagements to provide objective assurance with respect to the design and operating effectiveness of the IT controls supporting critical business systems and strategic objectives across the organization. This role will also interface with key business and IT stakeholders, as well as with external auditors, to facilitate the timely completion of audit engagements and communication of audit results. 

Essential Duties and Responsibilities

• Assist with the SOX and SOC1 audit planning and annual risk assessment processes to identify risks and define IT controls procedures
• Execute audit work programs and document workpapers and other audit materials that meet all relevant professional practice and company Internal Audit methodology requirements, leveraging leading technology audit practices as necessary  
• Lead walkthroughs and document walkthrough narratives and data flows of IT processes
• Manage and track the evidence collection process and remediation of identified control deficiencies
• Perform testing of IT controls utilizing Internal Audit’s GRC tool 
• Assist in documentation and communication of written audit reports to senior IT and business management
• Build and manage relationships with outside consultants, external auditors, and other key stakeholders to produce timely, high quality audit results  
• Assist in the performance of other IT Audit special projects, as needed, including IT Systems and Operational audits, and Cyber Security/Cloud evaluations 
• Lead, teach, and mentor staff auditors 
• Lead or support special technology-based projects in addition to traditional audit projects, where requested
• Stay connected and up to date on key technology audit methodologies
• Perform other duties as assigned

Knowledge, Skills, Competencies, and Abilities

• Ability to interact with personnel at all levels clearly and comfortably
• Ability to read, analyze, and interpret general business periodicals, professional journals, technical procedures, or governmental regulations.  Ability to write reports, business correspondence, and procedure manuals            
• Ability to apply mathematical operations to such tasks as frequency distribution, determination of test reliability and validity, analysis of variance, correlation techniques, sampling theory, and factor analysis
• Ability to define problems, collect data, establish facts, and draw valid conclusions. Ability to interpret an extensive variety of technical instructions in mathematical or diagram form and deal with several abstract and concrete variables
• To perform this job successfully, an individual will need a working knowledge of word processing software, spreadsheet software, database extraction and analysis tools

Required Qualifications

• Bachelor’s degree in technology, information systems, business intelligence, accounting, finance, or other related disciplines
• One or more professional certifications (e.g. CIA, CISA, CFE, CISM, CISSP) preferred
• Experience with SAP is highly preferred
• Minimum of 4 years of experience in IT audit, with a strong preference for candidates from Fortune 500 companies or the financial services and technology sectors
• Professional services experience acquired from a Big 4 environment or highly regarded, consulting firm is a plus
• ~10-20% domestic and international travel depending on location and project