JOB DESCRIPTION:

• The Internal Audit function’s ideal IT Auditor candidate is predominantly passionate about audit projects, participating in planning, driving fieldwork, and assisting with report clearance.
• The primary measure of success for this role is identifying potential issues about the design and efficiency of controls and creating reliable documentation to support their work.
• The IT Auditor must handle multiple auditee relationships, be a good teammate, and take accountability for their personal growth and professional development.

RESPONSIBILITIES:

• Strategic Control Impact – Identifies important issues in which controls are not accurately designed or are not operating effectively. Assesses the risk and control environment for processes within coverage areas. Works closely with auditees to verify timely progress and completion of agreed upon issue closure, under the guidance of a supervisor. Understands the financial services industry and risk and control environment for coverage areas and identifies new risks.
• Audit Execution – Assists a Senior Auditor or Audit Manager with the execution of audit planning, fieldwork, and reporting. Completes risk-focused fieldwork on time and within the allocated budget, advising the auditor in charge promptly of issues that arise or when budgets or timelines are at risk. Understands and performs root cause analysis for issues; possesses and demonstrates a strong understanding of audit techniques.
• Quality Process – Demonstrates a proven understanding of our policies & procedures, particularly work paper documentation standards. Independently prepares work papers that fully follow IAD policies and procedures. Participates in continuous improvement initiatives. Aligns risk and control processes into day-to-day responsibilities to supervise and mitigate risk; escalates appropriately

QUALIFICATIONS:

• Minimum of 2-5 years of related experience in IT Audit.
• A bachelor’s degree is required, preferably with a technology-related major.
• Certifications related to the candidate’s coverage responsibilities are beneficial, but not required, such as Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), and Certified Information Systems Security Professional (CISSP).
• Previous internal or external audit experience is helpful, but not required. Previous job experience for IT Auditors can vary to meet the department’s goal of having a team with diverse perspectives and work experiences.
• Capable of identifying, assessing, and advising on risks for large-scale technology projects, IT general controls and completing IT process audits (e.g., SDLC, Organizational Change, Logical Security, Business Continuity/Disaster Recovery and Incident/Problem Monitoring).

MUST HAVE:

2-5 years of related experience in IT Audit

Audit Execution

Ability to handle multiple auditee relationships, be a good teammate, and take accountability for their personal growth and professional development

NICE TO HAVE:

Internal or External Audit

Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), and Certified Information Systems Security Professional (CISSP)