Job Summary:
Under limited supervision, responsible for developing, performing, leading, and supervising information technology (IT) and cyber security audits as well as consulting and investigation engagements in compliance with pertinent rules and regulations within prescribed deadlines. Ensures audit findings and recommendations are practical and sustainable while validating all exceptions with process owners and local management to ensure reportable issues have been appropriately resolved.
Job Duties:
- Promotes and supports the role and objectives of the Internal Audit department at all levels of the organization.
- Takes a leadership role in the development and implementation of our audit methodology and program.
- Supports the annual internal audit plan by preparing audit programs and work papers, conducting walkthroughs, executing internal control testing and substantive procedures, and other special reviews/consulting engagements for information technology (IT) and cyber security projects.
- Examines and analyzes information systems operations to identify opportunities for improvement process effectiveness and assess risks.
- Executes moderate to complex internal audits of the Institution’s functions, processes, and control activities to ensure reliability and integrity of information, compliance with policies and procedures, and achievement of operational goals and objectives.
- Understands and evaluates institution business processes through the performance of interviews, process walkthroughs, and documentation of process narratives and/or flowcharts.
- Communicates assigned tasks to engagement teams in a manner that is clear and concise, ensuring the high quality of the deliverables.
- Monitors and reviews work progress and work-papers to ensure accurate and timely completion of audit projects.
- Prepares audit reports and ensures audit findings and recommendations are practical and sustainable.
- Performs follow-ups on audit observations and management actions and validate all actions with process owners and local management.
- Conducts information systems operational audits for data security and information integrity and provides support in the preparation of Internal Audit reports.
- Evaluates policies and procedures to ensure appropriate internal controls surrounding information systems are maintained.
- Performs all other duties as assigned.
Education:
Bachelor’s Degree is required.
Experience in lieu of a Bachelor’s degree will be accepted.
Experience:
Five (5) years of progressive work experience in areas of information technology, cyber security, or operational auditing is required.
Experience within higher education or healthcare sectors is preferred.
Additional Licenses and Certifications:
Professional information security and/or internal audit certification such as CISA, CISSP, CIA, or CRISC, or candidate for certification, is preferred.