Forrest T. Jones
Fidelity Security Life Insurance Company, and its affiliates ("FSL"), provide insurance and insurance related services to clients, corporations, employers and individuals. These services include providing benefits through innovative life and health insurance plans, financial services, and customized insurance products for niche markets.
Position Summary
As one of our Senior IT Auditors, you will be responsible for testing of FSL's internal IT controls (ITGC), performing IT process internal audits, performing IT reviews of our insurance partners, and assisting in our enterprise risk assessment process. In addition, you will also perform introductory supervisor tasks such as review of team control and audit testing, audit planning and design, and control design. This position will require you to challenge processes, use critical thinking skills to balance regulatory expectations and risk, communicate effectively, and interact with multiple levels of management, including senior leadership.
Expectations
Conduct IT General Control audits in the areas of IT Infrastructure, Cybersecurity, and other IT General Control areas (e.g. IT Operations, IT Risk Management. Business Continuity Management; etc.). Prepare and Perform IT Audit work programs inclusive of risks, regulatory controls, testing procedures, and documented results Prepare concise, appropriately referenced and easy-to-follow working papers that support the procedures performed, conclusion and recommendations. Prepare audit reports on internal control deficiencies and recommend improvements, ensuring clarity, conciseness and issuance in a timely manner Possesses project management skills to effectively organize/prioritize tasks to meet established deadlines, monitor progress of audits, and manage assigned budgets Document follow up and timely disposition of all assigned audit findings in accordance with the Internal Audit Department's Issues Management Performs ITGCs Test of Design (TOD) and Test of Operating Effectiveness (TOE) and adequately documents results. Strives for proficiency in AI and automation tools to streamline audit processes, enhance data analysis capabilities, and improve efficiency and accuracy in risk assessment and control testing. Continually explores innovative technologies and adopts best practices to optimize audit methodologies and department performance. Performs IT Operational Audits/Reviews as determined by the Annual Audit Plan (e.g., Project Management - PMO, Business Continuity, Change Management). Ability to lead IT walkthrough and close meetings with clients. Drafts audit report findings reviews team's findings. Documents and reviews workflow/process diagrams for areas under review. Participates in external assessments as directed by the IT Audit & Risk Manager. Assists in the enterprise risk management process by reviewing risks, KRIs, and working with management during the review period. Performs audit planning and development steps, designing and reviewing audit work programs, scheduling, coordinating management, updating documentation request lists, and assisting in staff assignment. Ability to translate work processes into controls (control descriptions, test procedures, and evidence expectations). Ability to continually improve department frameworks, standards, tools, and methodologies. Assists the IT Audit & Risk Manager with monthly department progress updates, KPI/KRI measures, and assist in management of the company GRC tool. Assist external auditors in the completion of Company's statutory and regulatory audits. Participates in other special projects or strategic initiatives at the direction of the IT Audit & Risk Manager. Effectively organizes, prioritizes, and plans time. Communicates schedule challenges to the IT Audit & Risk Manager. Competencies
Collaborative working style with the willingness to listen to various perspectives Strong communication skills in working with departmental management, divisional management, and external parties. Strong team player with ability to offer her/his opinions and yet respect decision determined. Good computer skills, detail-oriented, ability to multi-task, and dexterity to pivot based on priorities. Ability to interpret gray-areas and propose alternative solutions. In-depth knowledge of control TOD and TOE testing and can test and review others' results with minimum supervision. Working knowledge of industry frameworks. Ability to translate business processes into testable controls. Ability to lead audits and mentor staff auditors. Proven verbal and written communications skills that provides clear and effective in reporting and collaborating with all levels of management. Proven project management skills with the ability to understand scope work and level of effort, adhere to deadlines, and manage multiple assignments. Proven critical thinking skills that allow for the identification of problems, process gaps, and new audit opportunities. Ability to partner effectively with multiple business groups, corporate areas, and independent auditors. Effectively uses tact and diplomacy to discuss and resolve audit issues with management. Requisites
Bachelor's degree in related field, or equivalent years of experience and expertise Ability for occasional travel (5-10%) in a post-COVID environment to visit FSL business partners, third party administrators and/or managing general agents. Three (3) to five (5) years' experience in IT Audit, Information Technology, Information Security, or other audit experience. Certification or designation, such as CISA, CRISC, CISSP, CRMA, etc. Experience with IT risk assessment, IT control analysis, IT audit methodologies and techniques, sampling techniques, and the internal framework of control within the insurance or financial services industry desired Bonus
Experience in working in GRC tools such as Onspring, Venminder, BlackKite.
We offer comprehensive benefits to full-time employees including company-paid medical, STD, LTD and life insurance; plus voluntary dental, vision, Life/AD&D insurance, 401(k) with company matching, generous paid time off and much more.
We encourage applicants of all ages and experience, as we do not discriminate on the basis of an applicant's age.
All offers of employment are contingent upon passage of a drug screen and background check.
Position Summary
As one of our Senior IT Auditors, you will be responsible for testing of FSL's internal IT controls (ITGC), performing IT process internal audits, performing IT reviews of our insurance partners, and assisting in our enterprise risk assessment process. In addition, you will also perform introductory supervisor tasks such as review of team control and audit testing, audit planning and design, and control design. This position will require you to challenge processes, use critical thinking skills to balance regulatory expectations and risk, communicate effectively, and interact with multiple levels of management, including senior leadership.
Expectations
Conduct IT General Control audits in the areas of IT Infrastructure, Cybersecurity, and other IT General Control areas (e.g. IT Operations, IT Risk Management. Business Continuity Management; etc.). Prepare and Perform IT Audit work programs inclusive of risks, regulatory controls, testing procedures, and documented results Prepare concise, appropriately referenced and easy-to-follow working papers that support the procedures performed, conclusion and recommendations. Prepare audit reports on internal control deficiencies and recommend improvements, ensuring clarity, conciseness and issuance in a timely manner Possesses project management skills to effectively organize/prioritize tasks to meet established deadlines, monitor progress of audits, and manage assigned budgets Document follow up and timely disposition of all assigned audit findings in accordance with the Internal Audit Department's Issues Management Performs ITGCs Test of Design (TOD) and Test of Operating Effectiveness (TOE) and adequately documents results. Strives for proficiency in AI and automation tools to streamline audit processes, enhance data analysis capabilities, and improve efficiency and accuracy in risk assessment and control testing. Continually explores innovative technologies and adopts best practices to optimize audit methodologies and department performance. Performs IT Operational Audits/Reviews as determined by the Annual Audit Plan (e.g., Project Management - PMO, Business Continuity, Change Management). Ability to lead IT walkthrough and close meetings with clients. Drafts audit report findings reviews team's findings. Documents and reviews workflow/process diagrams for areas under review. Participates in external assessments as directed by the IT Audit & Risk Manager. Assists in the enterprise risk management process by reviewing risks, KRIs, and working with management during the review period. Performs audit planning and development steps, designing and reviewing audit work programs, scheduling, coordinating management, updating documentation request lists, and assisting in staff assignment. Ability to translate work processes into controls (control descriptions, test procedures, and evidence expectations). Ability to continually improve department frameworks, standards, tools, and methodologies. Assists the IT Audit & Risk Manager with monthly department progress updates, KPI/KRI measures, and assist in management of the company GRC tool. Assist external auditors in the completion of Company's statutory and regulatory audits. Participates in other special projects or strategic initiatives at the direction of the IT Audit & Risk Manager. Effectively organizes, prioritizes, and plans time. Communicates schedule challenges to the IT Audit & Risk Manager. Competencies
Collaborative working style with the willingness to listen to various perspectives Strong communication skills in working with departmental management, divisional management, and external parties. Strong team player with ability to offer her/his opinions and yet respect decision determined. Good computer skills, detail-oriented, ability to multi-task, and dexterity to pivot based on priorities. Ability to interpret gray-areas and propose alternative solutions. In-depth knowledge of control TOD and TOE testing and can test and review others' results with minimum supervision. Working knowledge of industry frameworks. Ability to translate business processes into testable controls. Ability to lead audits and mentor staff auditors. Proven verbal and written communications skills that provides clear and effective in reporting and collaborating with all levels of management. Proven project management skills with the ability to understand scope work and level of effort, adhere to deadlines, and manage multiple assignments. Proven critical thinking skills that allow for the identification of problems, process gaps, and new audit opportunities. Ability to partner effectively with multiple business groups, corporate areas, and independent auditors. Effectively uses tact and diplomacy to discuss and resolve audit issues with management. Requisites
Bachelor's degree in related field, or equivalent years of experience and expertise Ability for occasional travel (5-10%) in a post-COVID environment to visit FSL business partners, third party administrators and/or managing general agents. Three (3) to five (5) years' experience in IT Audit, Information Technology, Information Security, or other audit experience. Certification or designation, such as CISA, CRISC, CISSP, CRMA, etc. Experience with IT risk assessment, IT control analysis, IT audit methodologies and techniques, sampling techniques, and the internal framework of control within the insurance or financial services industry desired Bonus
Experience in working in GRC tools such as Onspring, Venminder, BlackKite.
We offer comprehensive benefits to full-time employees including company-paid medical, STD, LTD and life insurance; plus voluntary dental, vision, Life/AD&D insurance, 401(k) with company matching, generous paid time off and much more.
We encourage applicants of all ages and experience, as we do not discriminate on the basis of an applicant's age.
All offers of employment are contingent upon passage of a drug screen and background check.