Griffin Search Partners
Job Description
IT Audit Senior Associate
Aligns risk and control processes into day to day responsibilities to monitor and mitigate risk; escalates appropriately
Capable of identifying, assessing and advising on risks for large-scale technology projects, IT general controls and completing IT process audits (e.g., SDLC, Organizational Change, Logical Security, Business Continuity/Disaster Recovery and Incident/Problem Monitoring).
Proficiency in auditing infrastructure components is a plus (e.g., Mainframe, Unix/Linux, Windows).
RESPONSIBILITIES:
Strategic Control Impact: Identifies significant issues in which controls are not accurately designed or are not operating efficiently. Assesses the risk and control environment for processes within coverage areas. Validates the remediation of issues and completion of action plans under the guidance of a supervisor. Understands the financial services industry and risk and control environment for coverage areas and identifies new risks. Audit Execution: Assists IT Audit Manager or IT Senior Audit Manager with the execution of audit planning, fieldwork, and reporting. Completes risk-focused fieldwork on time and within the allocated budget, advising the auditor in charge promptly of issues that arise or when budgets or timelines are at risk. Writes and speaks clearly and concisely and can demonstrate detailed knowledge of that area being audited. Understands and performs root cause analysis for issues; possesses and demonstrates a strong understanding of audit techniques. Quality Process: Demonstrates a strong knowledge of our policies & procedures, particularly work paper documentation standards. Independently prepares work papers that fully align with IAD policies and procedures. Participates in continuous improvement initiatives. Aligns risk and control processes into day-to-day responsibilities to monitor and mitigate risk; escalates appropriately. Requirements
QUALIFICATIONS:
Bachelor's degree preferred with master's or equivalent experience Minimum of 6 years of related experience Strong analytical and problem-solving skills Strong dedication to teamwork and collaboration Strong written and oral communication skills Certifications related to the candidate's coverage responsibilities are beneficial, but not required, such as Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), and Certified Information Systems Security Professional (CISSP).
Skill Set Minimum of 6 years of related experience CISA or related cert a PLUS
Aligns risk and control processes into day to day responsibilities to monitor and mitigate risk; escalates appropriately
Capable of identifying, assessing and advising on risks for large-scale technology projects, IT general controls and completing IT process audits (e.g., SDLC, Organizational Change, Logical Security, Business Continuity/Disaster Recovery and Incident/Problem Monitoring).
Proficiency in auditing infrastructure components is a plus (e.g., Mainframe, Unix/Linux, Windows).
RESPONSIBILITIES:
Strategic Control Impact: Identifies significant issues in which controls are not accurately designed or are not operating efficiently. Assesses the risk and control environment for processes within coverage areas. Validates the remediation of issues and completion of action plans under the guidance of a supervisor. Understands the financial services industry and risk and control environment for coverage areas and identifies new risks. Audit Execution: Assists IT Audit Manager or IT Senior Audit Manager with the execution of audit planning, fieldwork, and reporting. Completes risk-focused fieldwork on time and within the allocated budget, advising the auditor in charge promptly of issues that arise or when budgets or timelines are at risk. Writes and speaks clearly and concisely and can demonstrate detailed knowledge of that area being audited. Understands and performs root cause analysis for issues; possesses and demonstrates a strong understanding of audit techniques. Quality Process: Demonstrates a strong knowledge of our policies & procedures, particularly work paper documentation standards. Independently prepares work papers that fully align with IAD policies and procedures. Participates in continuous improvement initiatives. Aligns risk and control processes into day-to-day responsibilities to monitor and mitigate risk; escalates appropriately. Requirements
QUALIFICATIONS:
Bachelor's degree preferred with master's or equivalent experience Minimum of 6 years of related experience Strong analytical and problem-solving skills Strong dedication to teamwork and collaboration Strong written and oral communication skills Certifications related to the candidate's coverage responsibilities are beneficial, but not required, such as Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), and Certified Information Systems Security Professional (CISSP).
Skill Set Minimum of 6 years of related experience CISA or related cert a PLUS