Information Technology Auditor (4-7 yrs)

Summary :

We are seeking a highly motivated and experienced Information Technology Auditor with a minimum of 4 years of experience to join our growing team.

The IT Auditor will be responsible for planning, executing, and reporting on IT audits, focusing on evaluating the effectiveness of controls, compliance with regulations, and the efficiency of IT operations.

This role requires a strong understanding of IT processes, security best practices, and audit methodologies.

The ideal candidate will possess excellent analytical, communication, and problem-solving skills, and will be able to work independently and as part of a team.

Responsibilities :

Planning and Execution of IT Audits : Participate in the development of the annual IT audit plan, conduct risk assessments, define audit scope and objectives, develop audit programs, and execute audit procedures.

This includes :

- Identifying and documenting key risks and controls within various IT areas (e.g, cybersecurity, infrastructure, applications, data management).

- Performing walkthroughs, interviews, and testing of controls to assess their design and operating effectiveness.

- Utilizing Computer Assisted Audit Techniques (CAATs) where appropriate to enhance audit efficiency and effectiveness.

- Documenting audit findings, conclusions, and recommendations in a clear and concise manner.

- Compliance and Regulatory Audits : Perform audits to ensure compliance with relevant regulations and standards, such as : GDPR, CCPA, HIPAA, SOX, PCI DSS, NIST Cybersecurity Framework, ISO 27001.

- Assessing the organization's adherence to internal policies and procedures.

- Security Assessments : Conduct security assessments of IT systems and infrastructure, including :

1. Vulnerability assessments and penetration testing reviews.

2. Reviewing security configurations and access controls.

3. Evaluating incident response plans and procedures.

- Reporting and Communication : Communicate audit findings and recommendations to management, both verbally and in writing.

This includes :

- Preparing draft and final audit reports.

- Presenting audit results to management and audit committees.

- Tracking the implementation of management's action plans.

- Continuous Improvement : Stay up-to-date with the latest IT trends, security threats, audit techniques, and regulatory changes.

- Contribute to the improvement of the IT audit methodology and processes.

- Collaboration : Work closely with other auditors, IT staff, and business units to ensure effective and efficient audits.

- Other Duties : Perform other duties as assigned.

Qualifications :

- Education : Bachelor's degree in Information Technology, Computer Science, or a related field.

- Master's degree or relevant certifications (e.g, CISA, CISSP, CIA, CRISC) are preferred.

- Experience : Minimum of 4 years of experience in IT audit, information security, or a related field.

Technical Skills :

- Strong understanding of IT infrastructure components (e.g, servers, networks, databases, operating systems).

- Knowledge of cybersecurity principles and best practices.

- Experience with various IT audit methodologies and frameworks (e.g, COBIT, ITIL).

- Familiarity with data analytics tools and techniques.

- Proficiency in using CAATs (e.g, ACL, IDEA) is a plus.

- Knowledge of cloud computing platforms (e.g, AWS, Azure, GCP) is a plus.

- Experience with scripting languages (e.g, Python, PowerShell) is a plus.