Director, Information Security
The Investment Diversity Exchange (TIDE)
CloudCyber Security
Senior Internal IT Auditor - Hybrid - Chicago, IL
CDW
full-time
Posted on:
Origin: • 🇺🇸 United States • Illinois
Visit company websiteSalary
💰 $88,000 - $122,400 per year
Job Level
Senior
Tech Stack
CloudSDLC
About the role
- Participate in the risk assessment process and development of the IT audit plan
- Assist in planning and scoping IT audit projects following a risk-based approach
- Conduct and supervise IT audit projects and perform audit procedures to provide assurance on risks, identify opportunities for improvement, verify that controls are operating effectively through testing and analysis, and conclude on audit objectives
- Coordinate and interface with third-party partners to facilitate the delivery of internal audit projects as needed
- Validate and share internal audit observations with stakeholders and senior leadership
- Create value-added internal audit reports that are clear, concise, and identify root causes with practical solutions
- Track and monitor audit observation remediation to ensure accurate reporting of open observation status
- Develop and manage relationships with key stakeholders to stay knowledgeable of developments across the organization, provide reliable and insightful risk and control expertise, and ensure action items resulting from audits are implemented effectively and timely
- Assist in the preparation of and/or delivery of internal audit updates to leaders
- Actively participate in enhancing internal audit standards and practices within Internal Audit
Requirements
- Bachelor's degree with 3+ years of experience in a combination of audit, information systems, information technology or other relevant technology area
- Extensive knowledge of internal audit practices, principles, and procedures
- Substantial background in identifying risk, controls and opportunities for improvements associated with IT processes, developing and executing audit test plans, and drafting audit reports with summary results for executives
- Working knowledge of IT control frameworks such as NIST CSF, NIST SP 800-53, COBIT, CIS CSC and experience with regulations/requirements such as SOX, GDPR, PCI DSS, and HIPAA
- Awareness of SDLC best practices, operating systems, database platforms, cloud platforms and network and system architecture concepts and technologies
- Excellent communication and interpersonal skills, with the ability to interact confidently with all levels of the organization
- Strong analytical, problem-solving, and decision-making skills
- Strong project management experience with history of balancing competing priorities and ability to adapt to the changing needs of the business while meeting deadlines
- Demonstrated ability to build and maintain strong cross-functional relationships
- Professional certification such as CISA, CISM, CISSP, or CRISC is a plus
- Public Accounting, Big 4, or regional audit firm experience is a plus
