Essential Functions: JOB PURPOSEAssist with planning, designing, performing, overseeing and reporting of large, complex information technology audits of University-wide administrative, financial, academic, and other operating computer systems using generally accepted IT audit methods, practices, and frameworks (i.e., ISACA, auditing standards, COSO, COBIT, and ISO) for the Office of Internal Audit.ESSENTIAL FUNCTIONS (Essential functions are the primary duties/major job responsibilities that an employee must be able to perform, with or without reasonable accommodation. The essential functions are listed in order of importance.) Provide leadership on IT audit engagements, including serving as project leader, assigning work, reviewing progress and quality of deliverables, and evaluating performance and technical capabilities of staff. Assess the adequacy and effectiveness of information systems security, strategic, and disaster recovery/business continuity plans, policies and procedures for the University. Perform data extraction and analysis services using University systems, specialized software, and other proprietary tools to analyze databases for specific attributes and to create reports. Oversee technology planning and request funding for computer assisted audit tools as needed. Collaborate with C&IT and University units in evaluating system controls during the planning, design, and implementation phases of applications, platforms, or services. Perform application control reviews and audits to test and evaluate the input, processing, and output controls over transaction processing and IT programs for specific applications. Perform general control reviews that test and evaluate security administration, scheduling, IT planning, policies and procedures, production operations and maintenance, systems infrastructure, and networks.Perform IT risk assessments. Perform forensic IT audits in conjunction with special investigations. Identify issues and make recommendations for improvement. Document detailed audit reports, charts, exhibits, etc. to present to senior management.Evaluate and monitor enterprise-wide systems development and enhancement projects as the internal audit (IA) liaison and project team member. Identify key system controls, deliverables, and IT risks and ensure all significant issues are identified and resolved prior to implementation. Assess the University's readiness for implementation. Ensure technical support needed to maintain and update Internal Audit's local area network and website, identify and resolve user desktop issues, maintain IA server, perform routine back-up and recovery test, maintain software/hardware inventory and make recommendations for purchases and/or enhancements. Identify and assess needs for external consultants for the Office of Internal Audit, where appropriate. Other duties as assigned.

Qualifications: MINIMUM QUALIFICATIONS Education:Graduation from an accredited college or university with a degree in computer information systems, information technology, accounting, finance or related field. Designation as Certified Information Systems Auditor (CISA) required.Experience: Specialist (minimum 5 years of job-related experience)Minimum 5 years of experience in IT auditing, external auditing, IT operations, business analysis, or program evaluation, including 3 years of experience managing projects and project staff. Experience should demonstrate considerable knowledge of information technology; information systems terminology, concepts, and practices, tools and applications; computer systems management; IT controls; web management; IT networks, hardware/software, data management and security. Special investigation experience, preferred.Knowledge, Skills and Abilities:Extensive skills in project management, multitasking, and maintaining composure under pressure while meeting multiple deadlines. Considerable knowledge of the Internal Auditing and Information Systems Auditing Standards and Codes of Ethics. Considerable knowledge of industry program policies, procedures, regulations, and laws. Extensive knowledge of and skill in applying internal auditing, management principles, and preferred business practices. Considerable knowledge of contemporary risk management, control techniques and frameworks. Working knowledge of control and self-assessment facilitation techniques. Working knowledge of industry program policies, procedures, regulations, and laws. Familiarity with the common indicators of fraud, collecting and analyzing complex data, evaluating information and systems, and drawing logical conclusions. Excellent organizational, management, oral and written communication and human relations skills. Considerable skills in negotiating issues and resolving problems. Extensive knowledge of management information systems, IT terminology, concepts and practices. Proficient in MS Word, Excel, PowerPoint, other computer assisted audit tools (CAATs).

Return to Search Results