Senior IT Auditor

Senior IT Auditor

Requirements

• Bachelor’s degree or equivalent in business, accounting, finance, information systems, cybersecurity, computer science, data analytics, or related fields
• 5+ years of experience required. 7+ years of experience preferred
• Knowledge of basic financial information (i.e. financial statements, general financial knowledge, etc.)
• Strong knowledge of auditing standards, SOX, ITGC, risk management, and internal control frameworks (i.e., COSO)
• Strong analytical skills required, capacity to assess business processes, risks, and controls
• Detail-oriented, analytical mindset, and strong problem-solving abilities
• Excellent communication and interpersonal skills to effectively collaborate with teams and present findings to stakeholders
• Ability to work independently and manage multiple tasks simultaneously
• Experience/Certifications in MS Excel & data visualization tools (Tableau, Power BI)

Responsibilities

• Develop a comprehensive understanding of ERP applications and processes by reviewing existing system documentation, interviewing key stakeholders, and assessing business processes, architecture, and data flows to define the scope of audit projects.
• Support internal audit engagements by conducting assessments related to finance, compliance, and ERP application controls.
• Coordinate the execution of IT General Controls (ITGC) for SOX compliance, which includes scoping, control testing, and timely reporting to management.
• Lead IT audits in collaboration with an outsourced auditor team, ensuring the timely completion of audit work papers. Discuss findings with management, determine audit conclusions, and agree on management action plans.
• Collaborate with the financial audit team on integrated audits to identify key IT risks and develop work programs to evaluate the effectiveness of controls.
• Assist in assessing the application environment for critical cybersecurity vulnerabilities and control gaps, and support management in remediation efforts.
• Advance the development of the department’s data analytics initiatives, which may involve coordinating development work, automation, and data visualizations.
• Analyze financial and operational data to identify trends, anomalies, and potential risks.
• Under the guidance of the IT Audit Director, effectively communicate the schedule, timelines, and expectations to ensure the successful completion of the audit plan and data analytics projects.
• Identify opportunities for innovative analytics applications, such as Robotic Process Automation (RPA), Machine Learning (ML), and Artificial Intelligence (AI) in risk assurance.
• Ensure that audits are conducted by industry standards and best practices, such as NIST, PIP, CII, and PMP.
• Maintain organized audit documentation, work papers, and evidence.
• Monitor and track the implementation of audit recommendations to ensure compliance.
• Prepare detailed audit reports that effectively communicate findings, recommendations, and action plans to senior management through written reports and/or presentations.
• Actively contributes to the development of internal audit methodologies and tools.
• Be willing to travel up to 25%, primarily within North America, with some international travel as required.

Preferred Qualifications

• Prior experience with the Big 4 is a plus
• CISA, CISSP, CISM, CRISC, or any other relevant certification.
• Prior experience with ERP systems (such as SAP, Oracle Cloud, PeopleSoft, or another ERP).
• Knowledge of regulations and compliance requirements specific to the IT and Cyber industry.
• Experience with Snowflake and Computer-Assisted Audit Techniques and Tools (CAATS) for data analysis (including SQL Server and SAS) is a plus.
• Proficiency in storytelling through data visualization tools is a plus.
• Familiarity with the AuditBoard tool is a plus.