AVP, Senior Auditor - Tech
Duties: Work closely with business and technology audit colleagues to ensure that key risks are identified and assessed in the program of audit coverage. Assist in all aspects of audits including risk assessments, audit planning, audit testing, control evaluation, report drafting, and follow up and verification of issue closure. Perform audit work in accordance with department and professional standards, and complete assignments in an efficient manner. Ensure accuracy and completeness of audit coverage. Write audit work papers and reports with minimal intervention by the Audit manager. Partner with colleagues, stakeholders, and control community members to evaluate, test, and report on the adequacy and effectiveness of management controls with appropriate recommendations for improvement, delivered through specific audit reviews or ongoing involvement in major activities or projects.Minimum education and experience required: Master’s degree or equivalent in Information Management, Finance, Technology, or related field plus 2 years of experience in information technology auditing, or related experience OR Bachelor’s degree or equivalent in Information Management, Finance, Technology, or related field plus 5 years of experience in information technology auditing, or related experience.
Skills required: Must have demonstrated knowledge of internal control concepts including evaluating and determining the adequacy of controls by considering business and technology risks in an integrated manner. Must have experience managing multiple tasks concurrently in an efficient and effective manner with minimal supervision. Must have experience in software development life cycle concepts, complex distributed computing environment, including AGILE development environments. Must have experience planning and executing audits in accordance with professional standards including the Institute of Internal Audit standards or the Information Systems Audit and Control Association's Certified Information System Auditor requirements. Must have experience reviewing systems for adequate controls around data confidentiality, privacy and demonstrated knowledge of industry standard frameworks like COBIT. Must have experience reviewing ITGC (Information Technology General Controls) and controls around Information Security. Must have demonstrated knowledge of IT Risk Identification, IT Risk Assessment, Risk Response Mitigation, and Risk and Control Monitoring Reporting. Must have demonstrated knowledge of controls around third party governance and oversight. Must have experience in project management, tracking deliverable deadlines and budget to actuals during the course of Audit, and presenting complex and sensitive issues to Senior Management. Employer will accept any amount of professional experience with the required skills.