Senior IT Internal Auditor

About The Position

Requirements

• Bachelor’s Degree in Management Information Systems (MIS), Information Technology (IT) or Accounting/Finance and 3-5+ years of relevant experience in internal audit, risk management, or public accounting/IT consulting
• In lieu of degree, equivalent professional experience will be considered
• Experience testing controls across all domains (ITGCs, ITACs, IPE/Key Reports); preference to comfortability identifying, designing testing for, and documenting new controls
• Experience leading walkthrough sessions, strong ability to provide direction to control owners
• Experience performing audits over new areas of interest with high degree of ambiguity
• Ability to work independently with limited direction in an environment prone to frequent change

Nice To Haves

• Current CISA, CIA, CRISC, CISM certification or willingness to obtain preferred
• Experience creating/utilizing AI Agents and data analytics tools is a plus

Responsibilities

• Assess IT General Controls (ITGCs), IT Application Controls (ITACs), and IPE (Information Provided by Entity, i.e. “Key Report) controls in support of our SOX 404 Program (Currently, execution of our SOX program and consulting on related matters comprise 50/25% of the job respectively)
• Deep understanding of complex, automated environment and the relationship to underlying business processes is desired
• Facilitate walkthroughs of controls within our IT SOX environment between the business and our external auditors
• Obtain and review evidence, ensuring audit conclusions are well-documented and based on a complete understanding of the process, circumstances, and risk.
• Identify control deficiencies, perform follow up actions as needed with necessary parties, and communicate issues clearly to control owners; Partner with IT and security leaders to drive remediation and risk reduction
• Identify gaps in controls within IT systems pertaining to SOX and non-SOX processes; Lead process-change projects that result from internal analysis of processes or controls.
• Coordinate work/assistance with co-source and external auditors as needed.
• Perform risk-based audits covering key topics, Develop audit programs and testing procedures relevant to risk and test objectives.
• Topics of focus may include but are not limited to: Identity and access management (IAM) Third Party Risk Management Resiliency and Disaster Recovery Vulnerability management and incident response Change management / SDLC
• Draft audit reports that clearly and concisely describe issues identified including value-added recommendations to improve the effectiveness or efficiency of related processes.
• Use data analytics tools (e.g., SQL, Python, R, Power BI, Tableau, Alteryx) to perform population testing, identify outliers, and automate repetitive procedures.
• Provide support to our IT Compliance team in aide to our SOC 1/2 Programs as needed
• Serve as a business advisor and partner by building strong relationships across departments (IT, Finance, HR, Security, etc.) to support a culture of risk awareness, providing senior management with advice related to control issues and continuous improvement
• Partner with business and IT stakeholders to understand process changes, system implementations, and technology‑driven risks.
• Maintain a working knowledge of the Company’s financial and operational workflows, product applications, and IT infrastructure.
• Ensure adequate focus on personal professional growth relevant to taking on more challenging assignments and proactively seek relevant education and training opportunities.
• Contribute to a positive and team-oriented culture by maintaining cooperative relationships, assisting other project teams when necessary, facilitating conflict resolution, sharing information, and accepting and providing feedback.
• Ensure adherence to all applicable department and professional standards.
• Perform other related duties as assigned or as the situation requires

Benefits

• 401K Match
• Paid time off
• Annual Incentive Plan
• Performance Bonus
• Comprehensive health insurance
• Adoption Assistance
• Tuition Reimbursement
• Wellness Programs
• Stock Purchase Plan options
• Employee Resource Groups