Reporting to the IT Audit Manager, the Senior IT Auditor position will provide a fantastic opportunity for a candidate to learn the operations of a $16B Fortune 300 organization while setting themselves up for great promotional opportunities either within Audit, Finance or another function in the enterprise. This team is committed to growing team members' skillsets and ensuring they have the right foundation to be successful. Senior Auditors work a hybrid schedule spending two days per week working from the headquarters in Chicago’s north suburbs.
Responsibilities:
- Lead the execution of IT assurance and advisory audits using Agile Internal Audit methodology.
- Prepare audit documentation including scope documents, flow charts, narratives, risk control matrices, test results and audit reports.
- Prepare project risk assessments to identify important risks and related controls.
- Develop detailed test steps and audit programs.
- Complete audit evidence and documentation in a manner consistent with department standards and to support conclusions reached.
- Prepare and communicate written communications to partners and work with them to identify remediation action plans.
- Follow-up with partners to ensure timely completion of remediation actions.
- Provide guidance and training to staff auditors.
- Assist Internal Audit management with developing relationships with partners.
- Participate in department continuous improvement projects.
- Maintain professional certifications and continued professional training.
Qualifications:
- Bachelor's degree in Business Administration, Computer Science, Information Systems or related field, or equivalent practical experience
- Professional certification preferred such as CISA, CISSP, CISM
- 3+ years of prior IT audit experience, SOX IT audit experience, or related IT experience in a corporate environment or with a public accounting firm.
- Knowledge of risk and internal controls over system operation processes and SAP ERP systems, Windows operating systems, networks, and Oracle database.
- Theoretical and practical knowledge of new IT risks, including cybersecurity, cloud computing and data privacy.
- Experience working with IT frameworks (e.g., NIST, ISO)
- Ability to travel (estimated <10%) to potentially include international assignments.