Senior IT Auditor

  • location: Middletown, DE
  • type: Permanent
  • salary: $80,000 - $109,999.84 per year

job description

Senior IT Auditor

job summary:
The Sr. IT Auditor is responsible for exhibiting the company's Mission, Vision and Values, regarding external customers, agencies, vendors, internal departments and co-workers. Performs moderate to complex level professional IT internal auditing work. Work involves conducting information technology audit projects and providing related consulting services to the organization's staff. Responsible for identifying technology risks, independently evaluating the efficiency and effectiveness of information technology infrastructure and application controls, including security and internal controls. Maintains all organizational and professional ethical standards. Works independently under general supervision with considerable latitude for initiative and independent judgment.

This position will be responsible for the following duties:

  • Identifies and evaluates the organization's IT risk areas and provides key input to the development of the Annual Audit Plan.
  • Develops and maintains the company's ITGC process, risk, and control documentation. Determines key IT risks and controls and tests the operational effectiveness of related key controls. Documents and issues deficiencies and ensures that management remediates such deficiencies.
  • Conducts audit procedures, including but not limited to the following:

    • Conducting interviews;
    • Documenting and evaluating processes according to audit department standards;
    • Identifying and assessing financial, operational, and/or compliance risks in the audit scope, identifying mitigating controls to determine whether such controls are effectively designed;
    • Developing test scripts and sampling plans for controls, test the operating effectiveness of key financial reporting controls identified under the annual IT Audit Plan and in accordance with IIA testing standards;
    • Developing audit programs and sampling plans for internal controls and testing the operating effectiveness of such controls in accordance with department standards;
    • Carrying out relevant computer-aided audit techniques;
    • Reviewing for compliance with procedures as applicable in the circumstances;
    • Identifying, developing, and documenting audit issues and recommendations;
  • Conducts IT audits of the following areas:

    • SOX testing of IT General Computer Controls
    • Network and application access/security;
    • Change management over operating systems, databases, other infrastructure systems/devices, and business applications (in-house/third party);
    • Intrusion prevention, detection, and response;
    • General data center operating controls;
    • Disaster recovery and business continuity;
    • System development life cycle;
    • Help desk;
    • Payment card industry compliance (PCI-DSS);
    • Targeted firewall audits;
    • IT hardware inventory;
    • Vendor management
    • Other areas as deemed necessary from risk assessment
  • Conducts special audits as needed to discover root-cause deficiencies in IT systems and/or processes.
  • Prepare audit reports to effectively communicate audit findings and corrective actions with key stakeholders.
  • Be an active project member for system implementations, upgrades, or version changes to ensure proper change management procedures and controls have been followed during the process.
Requires......a total commitment to company's Mission, Vision and Values and:

  • BS in Accounting Information Systems, Accounting, Management Information Systems, or similar area of study.
  • Certification of advanced degree is a plus (CISA, CISSP, CPA, CIA, MBA).
  • Effectively communicate, both orally and written.
  • Ability to multi-task in order to complete assignments within the appropriate time frames.
 
location: Middletown, Delaware
job type: Permanent
salary: $80,000.00 - 109,999.84 per year
work hours: 8am to 4pm
education: Bachelors
 
responsibilities:
Job Details

Description

Position: Senior Auditor (Information Technology)

Location: Middletown, DE



Responsible for exhibiting Chesapeake Utilities Corporation's Mission, Vision and Values, regarding external customers, agencies, vendors, internal departments and co-workers. Performs moderate to complex level professional IT internal auditing work. Work involves conducting information technology audit projects and providing related consulting services to the organization's staff. Responsible for identifying technology risks, independently evaluating the efficiency and effectiveness of information technology infrastructure and application controls, including security and internal controls. Maintains all organizational and professional ethical standards. Works independently under general supervision with considerable latitude for initiative and independent judgment.

This position will be responsible for the following duties:

  • Identifies and evaluates the organization's IT risk areas and provides key input to the development of the Annual Audit Plan.
  • Develops and maintains the company's ITGC process, risk, and control documentation. Determines key IT risks and controls and tests the operational effectiveness of related key controls. Documents and issues deficiencies and ensures that management remediates such deficiencies.
  • Conducts audit procedures, including but not limited to the following:

    • Conducting interviews;
    • Documenting and evaluating processes according to audit department standards;
    • Identifying and assessing financial, operational, and/or compliance risks in the audit scope, identifying mitigating controls to determine whether such controls are effectively designed;
    • Developing test scripts and sampling plans for controls, test the operating effectiveness of key financial reporting controls identified under the annual IT Audit Plan and in accordance with IIA testing standards;
    • Developing audit programs and sampling plans for internal controls and testing the operating effectiveness of such controls in accordance with department standards;
    • Carrying out relevant computer aided audit techniques;
    • Reviewing for compliance with procedures as applicable in the circumstances;
    • Identifying, developing, and documenting audit issues and recommendations;
  • Conducts IT audits of the following areas:

    • SOX testing of IT General Computer Controls
    • Network and application access/security;
    • Change management over operating systems, databases, other infrastructure systems/devices, and business applications (in-house/third party);
    • Intrusion prevention, detection, and response;
    • General data center operating controls;
    • Disaster recovery and business continuity;
    • System development life cycle;
    • Help desk;
    • Payment card industry compliance (PCI-DSS);
    • Targeted firewall audits;
    • IT hardware inventory;
    • Vendor management
    • Other areas as deemed necessary from risk assessment
  • Conducts special audits as needed to discover root-cause deficiencies in IT systems and/or processes.
  • Prepare audit reports to effectively communicate audit findings and corrective actions with key stakeholders.
  • Be an active project member for system implementations, upgrades, or version changes to ensure proper change management procedures and controls have been followed during the process.
Requires......a total commitment to Chesapeake Utilities Corporation's Mission, Vision and Values and:

  • BS in Accounting Information Systems, Accounting, Management Information Systems, or similar area of study.
  • Certification of advanced degree is a plus (CISA, CISSP, CPA, CIA, MBA).
  • Effectively communicate, both orally and written.
  • Ability to multi-task in order to complete assignments within the appropriate time frames.
 
qualifications:
  • Experience level: Experienced
  • Minimum 3 years of experience
  • Education: Bachelors
 
skills:
  • sox (3 years of experience is required)
  • control documentation (3 years of experience is required)
  • Risk assessment (1 year of experience is preferred)

Equal Opportunity Employer: Race, Color, Religion, Sex, Sexual Orientation, Gender Identity, National Origin, Age, Genetic Information, Disability, Protected Veteran Status, or any other legally protected group status.

get jobs in your inbox.

sign up
{{returnMsg}}

related jobs

    Senior NET Developer

  • location: Wilmington, DE (remote)
  • job type: Contract
  • salary: $0.07 per hour
  • date posted: 5/12/2021

    Jr. Financial Analyst

  • location: Newark, DE
  • job type: Temp to Perm
  • salary: $26 - $28 per hour
  • date posted: 5/19/2021