Senior IT Auditior

Senior IT Auditor

• My client is looking for a Senior IT Auditor to join their Office of the CISO Compliance Audit team in Charlotte, NC.
• In this risk and compliance role, you will perform a wide range of compliance and assurance activities serving as the primary liaison for ESS- IT driving improvements in control and governance processes.
• Manage and coordinate all internal Cybersecurity control standard audits of Applications, Engineering Tools, ESS IT Operations / Engineering, User Services, CISO including the coordinating conferences / interviews, facilitating data / information requests, assessing audit conclusions/reports for accuracy and completeness, assisting management with review and response to audit findings, and providing status updates to senior management as needed.
• Leads projects to improve the risk and control environment through ad hoc control/compliance assessments, increasing awareness and knowledge of internal and regulatory compliance requirements, and identifying ways to streamline or improve the control environment without increasing overall risk.
• Oversee the quarterly ESS IT Control Owner Self-Assessment (COSA) process by coordinating efforts, monitoring due dates, providing guidance to functional areas and reporting result to senior management.
• Reviews planned corrective actions for adequacy and monitors open recommendations and plans of actions and milestones (POAMs) for timely completion. 
• Collaborates with IT Business Partners, management and other stakeholders to maintain awareness of changes in risk profiles, promote the awareness of risk and compliance initiatives and deliberate options in addressing emerging risks
• Provides advisory and investigation support to management and IT Business Partners as needed.

Typical Education & Experience

• Typically a Bachelor’s Degree and 8 years work experience or equivalent experience

Required Skills and Education

• 8+ years of relevant, hands on experience working with and / or supporting IT Operations and Service Delivery as technical support staff or manager; plus a Demonstrated proficiency in IT solutions engineering and deployment.
• Solid understanding of information security frameworks and IT audit methodologies.
• Proficient with a broad knowledge of IT operations and technologies such as Network Infrastructure technologies (WAN/MAN/LAN), Cybersecurity, Active Directory, Backup & Recovery, Data Center, Messaging, Mobile Technologies, Remote Access, Storage, Operating Systems, Virtualization Services, SDLC and IT Service Desk.
• Ability to evaluate and assess enterprise-wide risk in order to give audit findings appropriate weight.
• Experience contributing to risk-based solutions structured around business priorities.

Preferred Skills and Education

• Bachelor’s Degree or Master’s degree preferably with an emphasis in information systems, computer science, accounting, business, or related field.
• 8+ years of experience in an audit or compliance role. 

Certification in one or more of the following preferred:

• Certified Information Systems Auditor (CISA)
• Certified Information Systems Security Professional (CISSP)
• Certified Information Security Manager (CISM)
• Certified Internal Auditor (CIA)
• Certified Public Account (CPA)