Senior IT Auditor
Summary
The Senior IT Auditor’s primary focus is to provide an independent, objective assurance and consulting activity to add value to the company. They will evaluate and assess information technology systems, processes, and controls to identify control gaps and make recommendations to improve the organization’s operations. The role involves determining if the Company’s network of risk management, control, technology, and governance processes are satisfactory and meeting the needs of the business as well as regulatory authorities.
Essential Functions
- Perform, under supervision of management, technology risk-based audits including analyses of solutions to complex problems
- Ensure compliance with established internal control procedures within the IT related functions by examining records, reports, operating practices, and documentation
- Identify gaps in internal controls and recommend risk mitigation measures and cost savings to strengthen internal controls and improve IT processes, infrastructure, and systems
- Prepare audit work papers which includes planning memos, risk assessment matrices and conclusions on test work, etc.
- Prepare and present reports that reflect IT process, system or infrastructure description, process flows, key internal controls, as well as, issues, root cause, and remediation
- Ensure audit findings are discussed with management and appropriately tracked through remediation
- Maintain effective relationships with IT management to enhance the audit process
- Function as an objective source of independent advice to ensure validity and risk mitigation
- Engage in continuous knowledge development regarding regulations, best practices, tools, techniques, performance standards and the Institute of Internal Auditors’ International Professional Practices Framework (IPPF)
Qualifications
- Required: Bachelor’s degree from an accredited institution is required. CISA, CISM or CISSP is preferred
- Minimum of 3-5 years of IT audit related experience. Experience in the Property & Casualty (P&C) insurance industry is a plus
- Experience in utilizing IT and Cybersecurity control frameworks including COBIT and NIST
- Understanding of finance and operation internal controls and internal audit methodology as well as SOX/MARSOX compliance requirements
- Ability to utilize critical thinking by applying process analysis, business intelligence, and problem-solving techniques
Additional Information
- Percentage of Time: 10% Domestic travel is required
- Salary Range: $100-112K. Salary determinations are based on various factors, including but not limited to, relevant work experience, skills, certifications and location
- Benefits: Comprehensive medical, dental, and vision coverage, 401(k) with a generous employer match and profit-sharing contribution, wellness incentive program, life and accidental death and dismemberment (AD&D) insurance, flexible spending programs, short-term and long-term disability plans, additional benefit programs, paid time off program, paid charitable leave, paid parental leave, tuition reimbursement program, personal insurance (auto/homeowners) discounts
Supervisory Responsibilities
This role does not have supervisory responsibilities.
Pay
Salary Range: $100-112K. Salary determinations are based on various factors, including but not limited to, relevant work experience, skills, certifications and location.
Schedule
The role will follow a hybrid work schedule of 4 days in the office, 1 days remote.