RecruiterDNA works with our company clients and hiring teams to capture realistic and accurate job requirements, screening and interviewing process. *If one of our Technical Recruiting Consultants has not yet conducted a proper requirement gathering meeting, know as the intake meeting, we will publish and post the job description given to us by our company client and make iterative changes to the job description.
Position Purpose: Lead the design, evaluation, and audit of controls for core IT applications and systems. Perform analysis of IT data to assess risk and improve processes and efficiency.
Serve as the lead for entire full lifecycle audit plans and projects, including deployment, implementation, and closure
Monitor, audit and evaluate controls for effectiveness and efficiency to mitigate areas of risks
Assess application risks, system risks, and data processes within IT and address risks with applicable general authorities or recommend solutions
Complete optimization reviews and prepare audit reports associated with the completion of scheduled audits (HIPAA, SOX, SOC1, and various State Department of Insurance audits)
Design application and system level in adherence to best auditing and security practices.
Interact with business owners to identify key controls and coordinate appropriate measurement efforts for process improvement
Serve as primary liaison between auditing bodies, IT security management, compliance and business stakeholders.
Establish new or improved methods design patterns and standards to solve complex problems
Assist with the implementation of department strategy related to information systems and technology architecture
Role and Scope - RecruiterDNA Plus Notes:
The Lead Information Technology Auditor supports the organization's goals to strengthen controls and improves compliance.
They will have the opportunity to help assess IT risks and controls, validate testing completeness and accuracy, report on compliance, provide advice on remediation and operate as the IT compliance liaison with critical business and IT stakeholders. The speed of business growth and technology innovation will offer opportunities to other opportunities; such as advising on DevOps, GRC and other emerging trends.
Bachelor's degree in IT, MIS, Accounting, Finance, Business Administration, related field or equivalent experience.
7+ years of combined IT and operational auditing and control experience, including systems design or implementation experience.
Experience in control design, development, automation, and assessment in IT systems, processes, and new implementations.
Experience in coordinating and planning IT audits.
Experience with specialized tools, including Oracle, MS SQL Service, MS Project and MS Office applications.
Experience in managing complex, cross-organizational technical programs. Knowledge and understanding of various IT disciplines (e.g., software development, operations, infrastructure and information security).
Experience with HIPAA (Health Insurance Portability and Accountability Act), SOX (Sarbanes Oxley), SSAE 16 (Statement on Standard for Attestation Engagements), ISO 27000, ITIL (Information Technology Infrastructure Library) or NIST (National Institute of Standards and Technology).
Licenses/Certifications: CISA, CISSIP, MS SQL Server, CPA, OR CIA preferred.
Project Management Professional (PMP) preferred.
CISA, CISSP, CPA
Experience implementing and integrated compliance framework with GDPR, NIST, ISO, and SOX
Process Automation (RPA) especially if related to compliance automation.
Analytical reporting of compliance and quantification of audit findings