100% of people found this useful
The IT auditor supervises and performs regular reviews of all layers of the organization’s technology systems. By collaborating with internal and external teams, the IT auditor will test, document and remediate any issues relating to the adequacy and efficiency of accounting, financial, and operating procedures established for IT control purposes. This includes the U.S. Sarbanes-Oxley Act as well as Basel II or IFRS. The IT auditor serves as a liaison between corporate accountants, IT department leaders, consultants and other stakeholders to ensure the integrity of information and processes.
- Establishes audit objectives and devises audit plan, following general audit plan and previous audit reports.
- Recognize control projects at risk of non-compliance and set priorities
- Adapt best practice frameworks such as ITIL, ISO 17799, COSO or COBIT to processes and procedures
- Establish a testing approach for all aspects of technology infrastructure
- Write recommendations and communication around the integration of new or changed processes will be integrated into existing workflows
- Devise, write, and test computer program required to obtain information needed from computer for audit.
- Devise controls for new or modified computer application to prevent inaccurate calculations and data loss, and to ensure discovery of errors
- Identify gaps in process management and work with stakeholders to develop solutions
- Evaluate processes and controls against the objectives of regulation such as Basel II, Sarbanes-Oxley and recommend improvements
- Communicate in clear language the audit results to senior management and stakeholder
- Champion risk management as a priority through business units and projects
- Collaborate on mitigation plans with internal auditors
- Post-secondary education in IT, finance or accounting
- Deep understanding of COSO, ITIL, ISO 17799 and COBIT frameworks
- Certified Information Systems Security Professional (CISSP)
- Certified Information Systems Auditor (CISA)
- At least three year’s experience working with internal and external auditors at an enterprise level
- Deep understanding of Basel II, Sarbanes Oxley and other industry regulations