1. Planning, execution, and reporting results for diverse audit engagements, including assurance and consulting projects. Perform risk assessment, audit testing, analysis and documentation in accordance with standards for the audit engagements. Ensure conformance with the Institute of Internal Auditors (IIA) International Standards for the Professional Practice of Internal Auditing. Follows up on management’s action plans to address remediation efforts as required.
2. Facilitate management discussions and provide advice related to risks, controls, and mitigation activities. Typically deals with all levels of management, including senior leaders and leaders. Assists in the periodic (at least annually) assessment of company risk.
3. Coordinate/supervise matrix resources (internal, intern and co-source) in performing audit engagements as necessary, evaluating work, monitoring progress to ensure timely completion of audit engagement and providing technical expertise. Ensure engagement follows standard policies and procedures. Interacts with the external audit firm.
4. Special projects for management or internal audit.
KNOWLEDGE SKILLS AND ABILITIES:
■ Strong working knowledge of accounting, information technology (i.e., UNIX, Windows, client server, internet, intranet, local area networks, wide area networks, HTML exposure, JAVA based development, firewalls and routers), information security (i.e., PCI, PII and encryption concepts), or operational processes.
■ Strong knowledge of the Institute of Internal Auditors (IIA) International Standards for the Professional Practice of internal Auditing, and working knowledge of Generally Accepted Accounting Principles (GAAP). Knowledge of Generally Accepted Audit Standards (GAAS) and Public Company Accounting Oversight Board (PCAOB) standards as they relate to work performed on behalf of / in support of the company’s external audit firm.
■ Knowledge of COSO and COBIT internal control frameworks and application to information systems.
■ Knowledge of ITIL framework a plus.
■ Strong interpersonal and communication skills (listening, written, oral and presentation skills) to effectively interface with all levels of management.
■ Risk assessment, control identification, process flow, problem solving and analytical skills.
■ Bachelor’s degree in relevant area of study such as Accounting, Finance or Information Technology.
■ Professional certification (e.g., CISA, CISSP, CPA, or CIA).
■ 5-7+ years of IT systems auditing, IT security or equivalent information technology operations experience (i.e., network administration, web application development, information security, or mainframe security).