Information Systems Auditor
The pay range on this position is commensurate with skills, education and experience
SUMMARY OF DUTIES & RESPONSIBILITIES (OVERTIME, IRREGULAR HOURS, TRAVEL, ETC.):
The Information Systems Auditor, under general supervision, uses knowledge and skills, obtained through education, experience, specialized training and/or certification to conduct financial, operational, compliance, and technology audits. This position works independently on complex assignments which includes researching, planning, and conducting audits to evaluate and improve the effectiveness of risk management, control, and governance processes. The Information Systems Auditor has contact with internal management that requires identifying, researching, analyzing and resolving problems.
To apply to this position go to: https://teco.hodesiq.com/job_start.asp
Duties and Responsibilities
· In accordance with IIA standards, plan audit and consulting projects in all phases: planning, fieldwork, reporting, and wrap up. Within the planning phase: assess risk, prepare process and systems documentation in flowchart and narrative form, and design risk-based audit programs.
· Perform audit tests to determine if business objectives are satisfied (e.g. internal controls and processes are properly designed and operating effectively). Document test results in work paper form and determine the need to revise the audit approach to address high risk areas. Provide direction to other auditors working on the project.
· Perform a critical self-review of all written work to ensure high quality deliverables and minimal iterations of review. Apply lessons learned from previous audits to minimize recurring review comments.
· Prepare written reports and related deliverables of audit findings and present findings to management. Recommend improvements in controls, policies, and procedures as needed.
· Follow up on client implementation of management actions.
· Demonstrate project management skills, managing own assignments or audits to meet target dates within budgeted hours. Ability to work within time budgets, proactively manage multiple projects, and communicate obstacles and status to Audit Services management.
· Develop testing programs and perform testing in connection with the evaluation of internal controls over financial reporting based on the requirements of Section 404 of the Sarbanes-Oxley Act of 2002.
· Perform special projects as needed, which may include internal consulting projects and working with external auditors and outside consultants.
· Occasional overnight, out-of-town travel is required
Skills, experience required:
· A minimum of two years of IS audit experience is required.
Skills, experience preferred:
· Experience auditing SAP or Oracle applications.
· A working knowledge of IT general control concepts, IT governance concepts, network and security concepts, SDLC methodologies, and IS internal controls standards and best practices (e.g. CobiT, ISO 27001, ITIL, NERC CIP)
· A general knowledge of mainframe and distributed system environments
· CIA, CISA preferred
· Ability to document processes with modeling tools (e.g. Visio)
· Ability to develop computer-assisted audit testing techniques using tools such as Excel, ACL, Access, or SQL query desirable.
· Ability to proactively manage workload and adapt in a changing environment
· Strong analytical, written and verbal communication, interpersonal and relationship building skills.
Education
A four-year college degree with a major in accounting, information systems, or related subject is required.
To apply to this position go to: https://teco.hodesiq.com/job_start.asp