Salary: The anticipated hiring range has been established at $96,000 - $101,000
CU System Administration takes into consideration a combination of the selected candidate’s education, training and experience as it relates to the position, as well as the position’s scope and complexity, internal pay equity and external market value when determining a salary level for potential new employees.
Benefits: With our unparalleled range of benefits, including top-notch healthcare, comprehensive wellness programs, enriching professional development, and a dynamic work-life balance, we ensure your holistic growth and happiness.
No-cost or low-cost medical & dental plan options, some inclusive of IVF assistance.
Disability, Life, Vision Insurance options.
Multiple retirement planning options including a mandatory 401(a) plan where CU contributes 10% of your gross pay, a 401k or 403b plan and a 457 deferred compensation plan.
Pre-tax savings plans, such as Health care and Dependent care flexible spending accounts.
Embrace a healthy work-life balance with ample sick and vacation leave, along with at least 12 paid holidays. This includes a dedicated week off for winter break.
4 weeks of parental leave to adjust to the joys of parenthood.
Tuition Benefit of 9 waived credits for eligible courses on any CU campus per academic year for employees, as well as options for your dependents.
Free RTD EcoPass and Free Onsite Parking at our 1800 Grant Street Office.
Many additional perk
4 Year Degree
Internal Number: Senior IT Auditor - 31066
Who We Are:
System Administration, which also houses the Office of the President, is located in the uptown neighborhood of Denver with a few smaller offices located on the campuses. Many of our departments support the educational and research missions of the four University of Colorado campuses, but System Administration is not considered a campus. We provide diverse opportunities for professional development, innovation, and collaboration with talented staff and faculty. Learn more about CU System Administration.
Internal Audit: The Department of Internal Audit (IA) reports directly to the University of Colorado (CU) Board of Regents through its Regent Audit Committee to ensure the University receives high quality audit, investigative, educational, and consulting services across the entire CU system. The Senior IT Auditor is responsible for planning and completing audit, investigative, and consultative engagements for the benefit of the university.
The Senior IT Auditor is responsible for performing assurance and advisory engagements, predominantly related to information systems, by consistently applying theories, methods, principles, and practices associated with professional internal auditing, performing duties associated with professional auditing that are predominantly intellectual and varied in nature, requiring creative, analytical, evaluative, interpretive, and critical thinking. To achieve this, the Senior IT Auditor performs projects at the direction of the Director of IT Audit Services or their designee, is accountable for delivering high quality and timely insights shared with partners, and upholds the IA team core values.
This security-sensitive position requires a criminal and financial background check for initial appointments, or at any time when determined by the position’s supervisory authority to be in the best interests of the University. In addition, this position requires adherence to the Code of Ethics promulgated by The Institute of Internal Auditors and the University’s Fiscal Code of Ethics.
This position reports to the Director of IT Audit Services and is exempt from the State of Colorado Classified Staff System.
Where You Will Work:
Hybrid – this role is eligible for a hybrid schedule, working some days from home and some days in office. This position will work at 1800 Grant Street, in Denver, and will travel to CU Campuses as needed.
Diversity and Equity:
The University of Colorado System Administration Office is committed to recruiting and supporting a diverse workforce. The university strives to promote a culture of inclusiveness, respect, communication and understanding. We encourage applications from women, ethnic minorities, persons with disabilities, persons within the LGBTQ+ community and all veterans.
Duties & Responsibilities:
Functional and Technical Project Management
Able to identify, classify and rate risks and issues according to their significance, and communicate them to IA management and stakeholders accurately and succinctly.
Accountable for timely completion of audit activities throughout the audit cycle/process, ensuring testing is complete in a manner that clearly supports audit objectives.
Understands and uses the annual risk assessment/audit plan, and individual audit objectives in relation to their role.
Drives projects to timely completion.
Identifies effective or creative approaches to obtaining and applying data and information in the audit process.
Applies the department’s assurance and advisory methodologies.
Evaluates risk using relevant authoritative guidance, cultural awareness, and cumulative audit knowledge obtained through previous audits in completing assurance and advisory engagements.
Responsible for complete and error free audit project documentation.
Helps draft clear, concise, well-organized, and factual observations and reports.
Uses technology and audit tools necessary to efficiently and effectively complete projects.
Identifies project risks and barriers, and communicates them timely to the project lead, Director and AVP.
Ensures work is consistent with project objectives, scope, and The Institute of Internal Auditors’ International Professional Practices Framework and, where appropriate, the guidance promulgated by the Information Systems and Control Association (ISACA).
Supports the department Quality Assurance and Improvement Program (QAIP) as directed by the AVP.
Develops effective project and work stream communications with minimal support.
Presents to project team and partners.
Maintains confidentiality of sensitive and privileged information and communications.
Supports investigations of potential fiscal misconduct, as needed.
Effectively supports external vendors and partners as needed.
Department Planning and Administration
Stewards project resources, expenses and budget.
Contributes insights by identifying potential assurance or advisory projects during the IA Plan development.
Communication and Collaboration
Maintains personal independence/objectivity and appropriately handles related concerns in projects.
Identifies and takes action on opportunities to build strategic relationships between individuals/teams/organizations to help achieve university goals.
Manages interpersonal differences proactively.
Maintains professional appearance and demeanor.
Communicates risks and issues to auditees timely throughout the audit.
Education and Counseling
Seeks opportunities to support managers, directors and AVP in providing counsel and education to the university community through such mechanisms as workshops, committee participation, and consultation projects, to enhance the university’s understanding of sound business practices that improve governance processes, risk management, and the control environment.
Shares knowledge by preparing and delivering development sessions, counseling and education to department staff, peers and others.
Counsels auditees regarding process quality, risk treatment, and university objective achievement.
Continuous Improvement and Adaptability
Regularly assesses own competencies and acts on self-identified gaps and feedback from others.
Continuously improves knowledge and skills related to the theories, methods, and principles of the profession of internal auditing, and knowledge of the university and higher education environment.
Demonstrates improvement by consistently learning from and applying changes expressed through received feedback.
Please ensure your resume includes any and all relevant experience to be accurately assessed against these qualifications. You must meet all minimum requirements listed at the time of application to be considered for this role.
A bachelor’s degree or advanced degree from an accredited university of higher education in a field of study relevant to information management, information/computing science or engineering, business or finance, mathematics or numerical analysis, or similar or equivalent professional experience (the educational requirement may be substituted by professional experience on a year for year basis)
Three (3) years of audit-related or business experience including:
One (1) year of project management experience
An active Certified Information Systems Audit (CISA) certification or development plan to achieve the certification within two years of hire
Local and regional travel to CU campuses on an “as needed” basis and may be on short notice.
Proficiency with the use of Microsoft Office programs and data analytics tools
An advanced degree in a relevant computing or business field, or in any field that enhances analysis, communication, or interpersonal interaction
Five (5) years of audit-related or business experience including:
One (1) year of project management experience
Professional experience in higher education, research institutions, technology management, or business analysis
Knowledge and application of relevant industry, security, privacy, governance, or compliance frameworks and standards such as COBIT, HIPAA, FERPA, PCI.
Knowledge and application of relevant technical guidance from organizations promoting technology best-practices or standards for IT security, privacy, operations, and service management such as NIST, ISO, OWASP, CIS, ITIL.
Experience with audit management software solutions, such as TeamMate+.
Experience or skills in any IT technological role such as program management, operations, security, data management or inquiry, or application development.
Certified Internal Auditor (CIA), or relevant audit-related, IT risk and security, IT and business process/management certifications.
Knowledge, Skills, and Abilities:
To be successful in this position, employees will need to exhibit the following:
Knowledge or practical exposure to information technology or information systems sufficient to successfully engage information technology professionals and management concerning technology risk
Knowledge, understanding, and ability to conduct work in accordance with the International Professional Practices Framework of the Institute of Internal Auditors and IT Audit Framework of the Information Systems Audit and Control Association.
Collaboration skills, including the ability to work with others from different areas and backgrounds to reach a common goal
Computer skills, including the ability to use Microsoft Office programs (i.e. Word, Excel, PowerPoint, Outlook, etc.) and learn and experiment with new software and systems
Interpersonal skills, including the ability to facilitate interaction, communication, and collaboration between others
Oral, written, and listening communication skills, including the ability to accurately interpret what others are saying and convey messages, information, concepts, and details accurately and clearly
Organizational skills, including the ability to set and meet goals and deadlines, manage appointments, create schedules, coordinate and facilitate meetings, and make decisions
Analytical and problem-solving skills, including the ability to examine and summarize complex data and trends to resolve issues, produce results, and draw broader conclusions (i.e. demonstrate business acumen)
Follow and uphold ethical guidelines, standards, and integrity and adhere to core character values of trustworthiness, respect, responsibility, and fairness
Manage time and priorities effectively
Knowledge, understanding, and ability to conduct oneself in accordance with the Regent Laws, university Administrative Policy Statements and relevant Procedural Statements, as well as department policies and procedures
Conduct self in a professional manner and delivers high quality work product
Foster an environment of trust and candor within the team and handles conflict proactively.
The Department of Internal Audit provides independent, objective assurance and consulting activity designed to add value and improve the university's operations.
It helps the university accomplish its objectives by bringing a systematic, disciplined approach to the evaluation and improvement of university processes related to university-wide risk management, control and governance.
The Department of Internal Audit is established within the University of Colorado by the Board of Regents. Its role and responsibilities are defined by the Board of Regents as set forth in the Internal Audit charter. The Audit Committee of the Board of Regents provides oversight of the Department of Internal Audit. The associate vice president of the Department of Internal Audit is appointed by the Board of Regents, reports functionally to the Audit Committee and reports administratively to the vice president, university counsel and secretary of the Board of Regents.