IT Internal Audit Job Description
IT internal audit
provides subject matter expertise in IT general controls, application, infrastructure areas, and strong knowledge of information security risks.
IT Internal Audit Duties & Responsibilities
To write an effective IT internal audit job description, begin by listing detailed duties, responsibilities and expectations. We have included IT internal audit job description templates that you can modify and use.
Sample responsibilities for this position include:
Assist the Sarbanes Oxley program lead auditor with documenting and testing various IT General Controls
Communicate with control owners across the IT groups to accomplish testing
Leading IT (including SOX) assessments to improve IT operational efficiencies and closer alignment with industry frameworks
Working specifically with leadership, you will identify new and emerging risks and then plan internally to monitor and determine remediation plans to control those risks
Supervise the execution of specific audit engagements designed to test risk and control practices
Coordinate and manage engagements to meet time, budget and quality expectations
This role is a supervisory role in which you will have direct reports
Identify opportunities for improving existing processes or creating new ones that more effectively
Anticipate, manage and reduce risk to and its participants
Demonstrate a strong knowledge of IAD’s policies and procedures—particularly work paper documentation standards
IT Internal Audit Qualifications
Qualifications for a job description may include education, certification, and experience.
Licensing or Certifications for IT Internal Audit
List any licenses or certifications required by the position: CISA, CISSP, CPA, CIA, CRISC, PMP, CISM, CRMA, CFE, CMA
Education for IT Internal Audit
Typically a job would require a certain level of education.
Employers hiring for the IT internal audit job most commonly would prefer for their future employee to have a relevant degree such as Bachelor's and Master's Degree in Accounting, Computer Science, Finance, Business, Information Systems, Management Information Systems, Business/Administration, Information Technology, MBA, Technology
Skills for IT Internal Audit
Desired skills for IT internal audit include:
COBIT
Databases
IT general controls
NIST
COSO
Infrastructure and IT processes and controls
Application controls and information security
IDEA
US GAAP
Compliance
Desired experience for IT internal audit includes:
Working knowledge of Financial Reporting, Fed
Participate in audits of information systems and technology in all areas of the company
Bachelor's degree in Management Information Systems/Information Technology, Computer Science or Business (Accounting, Finance, or related)
Advanced degree in teh same of related discipline preferred
BS/BA Bachelor's Degree in Management Information Systems and/or Technology and Accounting
Minimum 12 years IT audit experience and familiarity of business processes such as order to cash, procurement-to-pay, fixed assets, inventory, payroll, treasury and HR, the system controls related to these processes
IT Internal Audit Examples
1
IT Internal Audit Job Description
Job Description Example
Our company is hiring for an IT internal audit. Please review the list of responsibilities and qualifications. While this is our ideal list, we will consider candidates that do not necessarily have all of the qualifications, but have sufficient experience and talent.
Responsibilities for IT internal audit
- Assist in Governance Risk and Compliance (GRC) application maintenance and support
- Assist in IT Audit, IT Risk Management, and IT Compliance activities
- Partner with the IT team the Finance and Compliance functions
- Ability to scope, plan and execute audit programs and review
- Assist SVP and VP of Internal Audit in developing new strategies for IT audit
- Lead global IT operational audits and pre-implementation reviews
- Ensure delivery of high quality audit projects and timely deliverables
- Coordinate and manage audit team resources
- Ensure that team resources understand assignments, priorities and expectations and are held accountable for results
- Liaise effectively with co-sourcing partners and external auditors
Qualifications for IT internal audit
- ODesign and execute tests to validate identified application system controls, which may require data analysis, code inspection and re-performance of system processes
- OAnalyze the design of controls around the underlying system architecture in the context of information technology controls such as security, availability and performance and their impact on the business
- OAnalyze the business and technology processes to evaluate the effectiveness of the relevant technology controls
- Experience with similar internal audit roles in large organizations or with Big 4 audit firms highly preferred
- Bachelor’s degree in Information Technology, Finance, or Accounting, preferred
- CISA, CISSP, CIA, CPA, or CA preferred
2
IT Internal Audit Job Description
Job Description Example
Our company is growing rapidly and is hiring for an IT internal audit. Please review the list of responsibilities and qualifications. While this is our ideal list, we will consider candidates that do not necessarily have all of the qualifications, but have sufficient experience and talent.
Responsibilities for IT internal audit
- Work individually or as part of a team to lead and perform SOX Compliance and IT internal audits in accordance with standards and expectations set forth in the Internal Audit Charter
- Assist in operational audits and special projects prepare and issue auditreports and provide timely communication on findings to management and IA leadership
- And OS)
- Inform Senior Director Internal Audit and VP Internal Audit immediately when there is evidence of gross mismanagement, loss, or any gross violation of company policies
- Perform financial and operational reviews which address accounting risk, business risk, and regulatory risk, develop recommendations around existing controls in place the necessity to develop new controls
- As part of annual SOX evaluation, evaluate key application controls and IT related third party CUEC’s and risks (actual and emerging), assess the deficiencies, gaps and other issues, and make recommendations to improve the control design and operating effectiveness/efficiency, minimize risk, or comply with company policies and legal/regulatory requirements
- Demonstrate in-depth understanding of complex information systems
- Set and support performance expectations from staff members through goal establishment and on-going coaching
- Lead ongoing risk assessment process and assist in developing and executing a risk based audit plan
- Responsible for execution of IT audit plan, as approved by the Audit Committee of the Board of Directors
Qualifications for IT internal audit
- Data Analytical skills (SQL, ACL skills for example)
- Minimum 6 years IT audit experience
- Must have a Master’s Degree in Information Systems, Finance, or Computer Science
- Must have CISSP and/or CISA certifications
- Must have 2 years’ experience in auditing or public accounting positions with a Big 4 firm
- A Bachelors Degree in InformationSystems, Computer Science, Business orAccounting
3
IT Internal Audit Job Description
Job Description Example
Our company is growing rapidly and is looking to fill the role of IT internal audit. If you are looking for an exciting place to work, please take a look at the list of qualifications below.
Responsibilities for IT internal audit
- Develop valuable and positive relationships with the CIO, CFO, Engineering, IT and business partners by offering practical insight on complex issues impacting system/infrastructure/technology
- Manage risk-based projects, operational process reviews and review of system implementations, applications and other IT-related risk areas
- Work closely with other Global Internal Audit leaders in developing the project risk assessment for the project plan and scope on assigned engagements, documenting project scope and drafting applicable audit procedures and approach
- Establish clear expectations with teams for each engagement to ensure audits, related deliverables and associated documentation are completed timely and thoroughly
- Leading/participating in update and closing meetings with senior management
- Assist in ensuring quality of Risk and Control data in GRC application
- Oversee internal audits performed by internal and external resources
- Provide day-to-day management of IT audit process
- Partner with the IT team the greater Finance function
- Provide ongoing leadership for the development and maintenance of a high quality IT audit strategy and plan that provides independent, objective assurance and consulting services through a systematic, disciplined approach
Qualifications for IT internal audit
- Information Security certification such as CISA, CIA, CPA, CISM and CISSP preferred but not required
- 10+ years in IT Audit leadership
- Bachelor's degree in Computer Science, Information Systems, Engineering, Accounting, Finance, or related field
- Background in banking, financial services, futures exchanges or clearing houses preferred
- Practical experience working within information technology or information security preferred
- Experience in dealing with regulatory agencies, including the Federal Reserve Bank of Chicago, Board of Governors of the Federal Reserve System, Commodity Futures Trading Commission, and Securities and Exchange Commission preferred
4
IT Internal Audit Job Description
Job Description Example
Our growing company is looking for an IT internal audit. To join our growing team, please review the list of responsibilities and qualifications.
Responsibilities for IT internal audit
- Work with clients to test for compliance with various prevailing regulatory laws, requirements, and standards including but not limited to Sarbanes-Oxley Act of 2002, PCI DSS, ISO 27001, HIPAA, DFARS
- Plan, manage, and conduct independent audit assignments
- Serve as a subject matter expert for the company on IT audit and related issues
- Interface on a regular basis with the rest of the audit group to provide assistance and consultation where necessary
- Perform IT audit activities as assigned
- Participate in the development and maintenance of a high quality IT audit strategy and plan that provides independent, objective assurance and consulting services through a systematic, disciplined approach
- Be an ambassador of the Internal Audit Services department while performing assigned responsibilities consistent with the guidance established by the Internal Audit Services charter, policy, and procedures
- Identify potential deficiencies, control enhancements, and process improvement opportunities
- Coordinate among control owners, management, external audit, internal audit, and the Audit and Risk Committee to complete the audit plan
- Provide auditing expertise to the Internal Audit Services team in a collaborative manner, the development to the audit team through coaching, training, and other educational opportunities
Qualifications for IT internal audit
- Understanding of the current local and international regulatory environment and familiarity with the Regulation Systems Compliance and Integrity (Reg SCI) and the CFTC proposed rules related to System Safeguards testing preferred
- Financial and Operational processes and controls
- Collaborating directly with clients
- Strong understanding of business processes, financial reporting and information technology audit and control frameworks such as SOX, COBIT, ITIL, and PCI
- CISA, CIA, CISSP, CPA or related certifications
- Strong work ethic, capacity to execute and drive for results
5
IT Internal Audit Job Description
Job Description Example
Our company is searching for experienced candidates for the position of IT internal audit. We appreciate you taking the time to review the list of qualifications and to apply for the position. If you don’t fill all of the qualifications, you may still be considered depending on your level of experience.
Responsibilities for IT internal audit
- Areas of IT risk focus may include SaaS security & controls, SDLC processes (waterfall & agile), logical access, database, network and operating system configuration and security, and compliance with industry regulations/standards
- Demonstrates a clear commitment to the highest standards of integrity, professional and personal conduct and holds others to the same standard
- IT Audit Leader will focus mostly within IT Security
- As needed, assist with pre- and post- implementation system reviews, and perform internal readiness assessments
- Demonstrate significant knowledge of information technology general controls and automated business process controls and concepts using both homegrown and SAP ERP systems
- Participate in IT engineering risk assessment activities and help execute the corporate enterprise risk management plan
- Identify opportunities and utilize data analytics techniques where appropriate to evaluate large and complex populations of data
- Become subject matter expert and the go-to person for institutional knowledge of specific products, systems, and processes
- Perform IT risk assessments and planning of IT audit procedures/IT risk projects
- Managing the execution of the IT audit plan - adapting the plans to emerging risk areas, when appropriate
Qualifications for IT internal audit
- Five to eight years of progressive experience and proven success within a large, complex, multi-national company
- Solid understanding of the relationship of information systems, internal controls and business
- Seven years of experience in internal and/or external IT auditing for a large complex environment in leading and performing IT infrastructure, application and pre/post-implementation reviews in a distributed systems environment
- Demonstrated knowledge of COBIT, CA (Continous Audit) and CM (Continous Monitoring) ITIL preferred
- Experience with data and analytics tools such as Alteryx or Qlikview
- Degree in business administration / economics or engineering or comparable professional experience