Job Title: Senior IT Auditor

Job Summary: We are seeking a detail-oriented and experienced Senior IT Auditor to join our team. In this role, you will be responsible for planning, executing, and leading IT audit engagements to evaluate the effectiveness of our organization's IT controls, processes, and systems. You will play a critical role in identifying risks, ensuring compliance with regulations, and providing recommendations to enhance IT operations. If you have a strong background in IT auditing, a keen eye for detail, and a passion for improving organizational IT governance, we invite you to apply for this key position.

Responsibilities:

1. Audit Planning and Execution:

   • Plan, design, and conduct IT audits to assess the effectiveness of internal controls, risk management, and governance processes.
   • Lead audit engagements from start to finish, including risk assessment, audit program development, fieldwork, and reporting.

2. Risk Assessment:

   • Identify and assess IT-related risks, including cybersecurity, data privacy, system access, and IT operations.
   • Evaluate the adequacy and effectiveness of IT controls in mitigating risks and ensuring compliance with regulatory requirements.

3. Process and System Evaluation:

   • Review and assess IT processes, systems, and infrastructure for compliance with industry standards and best practices.
   • Test and evaluate the reliability, integrity, and security of IT systems, including applications, databases, networks, and operating systems.

4. Compliance and Regulation:

   • Ensure that IT controls and processes comply with relevant laws, regulations, and industry standards, such as SOX, PCI-DSS, HIPAA, or GDPR.
   • Collaborate with management to ensure that corrective actions are implemented to address audit findings.

5. Reporting and Documentation:

   • Prepare clear, concise, and well-documented audit reports that communicate audit findings, risks, and recommendations to management and stakeholders.
   • Maintain accurate and comprehensive documentation of audit work performed, including work papers, test results, and supporting evidence.

6. Continuous Improvement:

   • Provide recommendations for improving IT controls, processes, and systems based on audit findings and industry best practices.
   • Stay current with emerging IT risks, technologies, and audit techniques to enhance the effectiveness of audit engagements.

7. Collaboration and Communication:

   • Work closely with IT, finance, and other departments to understand business processes, identify risks, and provide audit support.
   • Communicate audit results and recommendations effectively to senior management and other stakeholders.

Qualifications:

• Bachelor’s degree in Information Technology, Computer Science, Accounting, or a related field.
• 5+ years of experience in IT auditing, information security, or related fields.
• Professional certifications such as Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), or Certified Internal Auditor (CIA) are highly preferred.
• Strong knowledge of IT governance frameworks, including COBIT, ITIL, and NIST.
• Experience with IT general controls (ITGC), application controls, and cybersecurity audits.
• Excellent analytical, problem-solving, and critical-thinking skills.
• Strong written and verbal communication skills, with the ability to present audit findings and recommendations clearly and effectively.
• Ability to manage multiple audit projects simultaneously and meet deadlines.
• Familiarity with audit management software and data analytics tools is a plus.

Additional Requirements:

• Experience in auditing cloud computing environments, ERP systems, and third-party vendors is an advantage.
• Ability to work independently and as part of a team in a fast-paced environment.
• Willingness to travel for audit engagements as needed.