Senior Information Technology Auditor

As a Senior Information Technology Auditor, you will play a crucial role in our organization by planning, executing, and reporting on IT audits to evaluate the efficiency and effectiveness of controls related to information systems, cybersecurity, and regulatory compliance. Your responsibilities will include identifying risks, assessing controls, and offering recommendations for enhancement. You will lead and conduct IT audits, covering tasks such as scoping, risk assessment, developing audit programs, fieldwork, and documenting findings. Your expertise will be utilized to identify and evaluate IT risks in areas like cybersecurity, data privacy, cloud computing, network infrastructure, applications, and change management. Evaluation of the design and operating effectiveness of IT controls will be essential to ensure compliance with regulations such as SOX, GDPR, HIPAA, ISO 27001, and industry best practices. You will document audit procedures, findings, and recommendations in a clear and professional manner, culminating in comprehensive audit reports for management and the audit committee. Effective communication and collaboration with various stakeholders are crucial aspects of this role. You will communicate audit findings and recommendations to management, collaborate with IT and business units to implement corrective actions, and contribute to the continuous improvement of the IT audit process. Your responsibilities will also encompass managing multiple audit projects concurrently, ensuring timely completion within budget and scope. Additionally, you may provide mentorship and guidance to junior IT audit staff, participate in special projects, and stay updated on emerging IT risks, audit methodologies, and regulatory requirements. To qualify for this role, you should hold a Bachelor's degree in Information Systems, Computer Science, or a related field, with a Master's degree being a plus. You should have 5-7 years of experience in IT audit, preferably in a publicly traded company or a regulated industry. Possessing certifications such as CISA, CISSP, CIA, or CRISC will be required. Strong technical skills including knowledge of IT audit methodologies and frameworks, various IT domains, IT general controls (ITGCs), application controls reviews, relevant regulations and compliance frameworks, as well as proficiency in using audit management software and data analytics tools are essential. Working knowledge of operating systems, databases, and cloud platforms will also be beneficial for this role.,