Job
Description
This position as a Senior IT Internal Auditor is a vital role within the Internal Audit Team, requiring you to take the lead in executing high-impact, risk-based IT audit engagements that are in alignment with regulatory frameworks such as SOX, FFIEC, and NIST, as well as organizational priorities. The ideal candidate for this role will possess experience in auditing intricate IT environments and a profound expertise in cybersecurity, IT governance, and technology risk. Your primary responsibilities will involve contributing to the annual IT audit plan by assessing risk, planning and scoping audits, and providing assurance and advisory services across various areas including financial reporting, cloud computing, data protection, third-party risk, and IT operations. Collaboration with stakeholders from departments such as Accounting, Technology, Information Security, Risk, and Compliance will be crucial in driving efforts towards risk mitigation and control enhancement. Your duties will include executing the SOX IT and information systems testing program, conducting walkthroughs, analyzing audit evidence, executing controls testing, identifying issues, defining issues, and documenting business processes and procedures. You will also be involved in supporting the creation of status reports and planning materials, collaborating closely with internal and external stakeholders, and performing end-to-end planning, execution, and reporting of risk-based IT audit engagements across various domains such as Information Security Program, Network & System Security, Business Continuity and Disaster Recovery (BC/DR), Change Management and Software Development Lifecycle (SDLC), Third-Party Risk Management (TPRM), Identity & Access Management (I&AM), IT Operations and Asset Management, Privacy and Data Protection, and Cloud and Outsourced Services. Additionally, you will evaluate IT risks, control maturity, and alignment with regulatory expectations, provide risk advisory and control consultation to IT and business leadership, collaborate closely with cross-functional stakeholders to understand business processes and evaluate control effectiveness, develop and deliver clear, concise, risk-focused audit reports, partner with internal and external audit teams, monitor and validate the implementation of management action plans, support new system implementations, conduct risk assessments, contribute to the development and evolution of the IT audit program, act as a key liaison to internal and external auditors, and suggest alternatives for process improvements. To be successful in this role, you are required to have a Bachelor's degree in Information Technology, Accounting, Finance, or a related field, along with five or more years of experience in IT audit, internal audit, cybersecurity, financial services, or a related business function. A thorough understanding of internal controls, IT risk, and regulatory requirements including SOX, FFIEC, and financial compliance frameworks is essential, as well as strong knowledge of internal audit methodologies, project management skills, proficiency in Microsoft Excel, Word, Outlook, and data analysis tools, and excellent communication and interpersonal skills. Holding an active CIA, CISA, or CPA designation or having plans to pursue one is also preferred.,
