IT Internal Auditor Job Description
IT Internal Auditor Duties & Responsibilities
To write an effective IT internal auditor job description, begin by listing detailed duties, responsibilities and expectations. We have included IT internal auditor job description templates that you can modify and use.
Sample responsibilities for this position include:
IT Internal Auditor Qualifications
Qualifications for a job description may include education, certification, and experience.
Licensing or Certifications for IT Internal Auditor
List any licenses or certifications required by the position: CISA, CISSP, CIA, CPA, CISM, CIPT, CRISC, PMP, SOC, ISO
Education for IT Internal Auditor
Typically a job would require a certain level of education.
Employers hiring for the IT internal auditor job most commonly would prefer for their future employee to have a relevant degree such as Bachelor's and University Degree in Accounting, Computer Science, Finance, Information Systems, Business, Information Technology, Business/Administration, Education, Management Information Systems, MBA
Skills for IT Internal Auditor
Desired skills for IT internal auditor include:
Desired experience for IT internal auditor includes:
IT Internal Auditor Examples
IT Internal Auditor Job Description
- Recommending corrective action to improve controls, enhance operations and increase efficiency
- Working with the Internal Audit team to create a truly integrated auditing approach
- Identifying compliance risks and areas of improvement and evaluating the adequacy of designed controls, drawing conclusions and presenting findings to management
- Handling special project, as needed
- Provide practical, innovative and value-added solutions to issues identified, while remaining objective and independent
- Ensure corrective actions are implemented in a timely manner to effectively address the issues
- 20-30% audit-specific travel required
- Not a people management role no direct reports
- Evaluate the adequacy and effectiveness of the Company’s IT systems and related internal controls
- Perform other financial or operational audits, internal reviews, or duties as assigned or required
- Professional communication and written ability
- Prior experience of testing IT application controls
- This position requires a Bachelor's degree in information technology, information security, information systems, business, or related field or relevant military experience
- Experience at a Financial Institution with a detailed understanding of key business processes and supporting applications
- Expert knowledge of practices, procedures and techniques that provide for the authorization, completeness, timeliness and accuracy of data processing
- Highly proficient in the analysis and evaluation of application controls that support the business process and the identification of their relative strengths and weaknesses
IT Internal Auditor Job Description
- Assist in plan development, and execute IT internal audits, assist with compliance, operational, and financial internal audits to determine adherence to guidelines and regulations, and evaluate the effectiveness of internal controls
- Communicates audit results to corporate management in both written and verbal formats
- May assist other staff with the performance of corporate or field audits as needed
- Develops ongoing positive relationships with IT department managers
- Maintains ongoing communication with Internal Audit management, including immediate notification of significant issues
- Updates the auditing database in a timely manner and maintains accurate records of the audit work performed, audit fndings and observations, management responses, response due dates, and the status of corrective action plans
- Coordinates activities with external auditors as necessary and may provide assistance to external auditors
- Develops computer assisted auditing techniques to assist the department in queries of system data to facilitate the effectiveness of internal audit testing activities
- Assists the Internal Audit management team in the annual risk assessment process
- Manage the IT SOX compliance
- A Certified Information Systems Auditor (CISA) or similar professional certification
- Experience with integrated auditing in the financial service industry
- BS/BA degree in Management Information Systems/Information Technology, Computer Science, or Business (Accounting, Finance, or related) required
- Advanced degree in the same or related discipline desired
- 3+ years’ experience in IT Audit, IT Compliance
- 2-3+ years financial industry experience strongly preferred
IT Internal Auditor Job Description
- Bachelor’s degree (or higher) in computer and information science or other business discipline preferred
- Ability to identify business risks and mitigating control activities
- Schedule and hold interim status update meetings
- Lead closing meetings with the site or function area for each review
- Participates in other audit meetings
- Prepare the listing of audit comments and audit report drafts
- Follow up on and review management’s responses to audit comments and track action items
- Possess an understanding of general IT controls (system development life cycle, change management, information security, backup and recovery, monitoring, ), infrastructure (network, data center, ), operating systems, database administration, practical audit experience executing audit programs
- Assist in developing internal audit scope, performing IT audits
- Assist with providing leadership and advisory services/technical support in the areas of information technology corporate governance, risk and control management, policies and procedures, SOX compliance , financial and operational processes
- Bachelor’s degree in Management Information Systems, Business or Accounting or equivalent practical experience
- CISA / CIA / CPA or related experience
- Experience in Media or Technology strongly preferred, including data analysis and online advertising systems and concepts
- Proficient with open source software tools
- Strong PC skills including effective use of Microsoft Office and experience with data analytics using CAATs
- Solid understanding of Backup and Recovery best practices and methodologies the industry technologies utilized (e.g.,NetBackups)
IT Internal Auditor Job Description
- Understanding IT and business processes to properly identify risk
- Assesses compliance with laws and established internal controls by examining records, reports, operating practices, and documentation
- Tracks the status of IT Internal Audit issues and perform follow-up testing as needed to ensure complete remediation of an identified issue
- Meets established deadlines
- Maintains professional and technical knowledge by attending educational workshops/seminars
- Perform other duties or special projects as assigned by internal audit management
- Work with the Manager of Internal Audit to assist key IT personnel in documenting both existing and newly created policies and procedures using established Company standards
- Assist with the administration of the Company repository for key IT controls documentation related to design, operating effectiveness and management control accountability
- Prepare detailed plans for performing individual audits including the identification of key risks and controls, determination of audit objectives, and development of an appropriate audit program
- Assist in the development and maintenance of appropriate testing strategies and test plans to enable management to assess the operating effectiveness of key IT general controls impacting financial reporting
- Working knowledge of relevant data analytics tools such as ACL / IDEA
- ACL experience is a plus
- 2 or more years of relevant audit work experience, preferably within a Big 4/5 environment, financial services industry
- Solid understanding of business processes Enterprise Resource Planning systems
- Experience with CAATT (Computer Assisted Auditing Tools & Techniques) such as IDEA, ACL
- Three years of internal audit or related experience
IT Internal Auditor Job Description
- Provide Business and IT management with guidance on IT risk management matters, particularly on application and infrastructure security
- Risk Assessment – Applying risk and control concepts to assess control design and developing a test approach of the key controls
- Work with business internal audit personnel during integrated audits to ensure key risks are adequately addressed
- Identify opportunities to optimize the Company’s resources
- Present results to department management
- Provide support to external auditors in the execution of financial auditing assignments
- Perform complex and comprehensive IT audits in conformance with professional auditing standards
- Minimum of four (4) years of IT audit experience in technology-based tools and/or methodologies
- Ability to form working relationships with both internal and external stakeholders
- Ability to consider various points of view
- Three years of relevant audit experience in areas such as IT SOx and SOC controls, PCI, cybersecurity, mobile technology
- Bachelor's and/or master's degree in computer science, computer engineering, management information systems, accounting information systems, or equivalent discipline
- At least one professional certification required, preferably multiple, such as CISSP, CISA, CISM, GSEC, GPEN, GSLC, or equivalent
- 5+ years of experience in leading and conducting audits and/or assessments of key IT domains including information systems, cyber security, SDLC (Agile & waterfall), network & infrastructure architecture, application security, business continuity disaster recovery, penetration testing, data management, and related processes
- Ability to understand and communicate highly technical issues to both technical and non-technical audiences
- Big 4 or consulting firm experience preferred