The Senior Information Systems (IS) Auditor I position within the Internal Audit Services department offers the candidate an excellent work-life balance IS auditing opportunity. The candidate will complete assurance audits focused on information systems, information security, networking, telecommunications, programming, and hardware activities, as well as consulting engagements. The ideal candidate will be need to be able to complete risk-based audit assignments with limited supervision including research, planning, and fieldwork as well as drafting reports for review by Internal Audit Services management.
Essential Functions and Responsibilities:
- Perform information systems audits alone or as part of a team;
- Develop and document an understanding of information system controls and processes / Ability to develop new or uncharted audit procedures;
- For each audit engagement, evaluate information systems, platforms, infrastructure, and operating procedures and controls. With this information, complete a risk assessment and develop a focused and risk-based audit program for the work to be completed;
- Understand and analyze complex data, systems, and processes effectively to identify system control and other weaknesses, evaluate the significance of any issues, and develop sound conclusions, opinions, and recommendations for improvement opportunities;
- Prepare neat and organized work papers that properly support work performed, audit observations, opinions and recommendations;
- Learn new technical material quickly and apply the acquired knowledge during assignments;
- Effectively communicate in writing by sharingaudit observations, opinions, and recommendations; and by developing the initial draft of auditreports;
- Effectively communicate orally by interacting with all levels of employees and management (both technical and non-technical) during each audit or consulting engagement; and
- Perform other tasks and projects as assigned.
Qualifications, Education, and Experience:
- Bachelor’s degree (or higher) in a business-oriented major (e.g., accounting or finance) or in an information systems oriented major from an accredited college or university;
- An active Certified Information Systems Auditor or a Certified Public Accountant (with additional information technology credentials);
- Minimum of one year of information systems auditexperience and a minimum of six years of acceptable auditing/information systems experience, or equivalent experience to be able to function effectively. Such knowledge and experience must include detailed knowledge of all aspects of Information System auditing;
- Preference will be given to those candidates with three to five years of direct information systems auditing with the ability to perform security and general computer controls reviews on complex systems; and
- Must be technically proficient with the security, audit, and control issues of hosted and distributed computing environments;
- Limited travel may be required (generally no more than 10% to 20% per year); and
- Only a few occasions requiring overtime.