Job Description

Experience

• To have at least 5 years of IT Audit, risk assessment and Information Security experience.
• Extensive Knowledge in Information System Audit skill in: Mainframe, UNIX, Windows, Oracle Database, ERP system and Network Devices (Firewall, Router, Switch)
• Experienced and well-verse with IT general controls and Application controls. Experience in auditing SSAE 16, Cloud systems.
• Experience in SOX regulatory compliance & ISO 27001:2013, Privacy audit, software compliance audit

Education and Professional Qualification

• Minimum Education: Degree in Business with major in Accounting or Finance, Information Systems, or Computer Science
• ISO 27001:2013 Lead Auditor
• Certified Information Systems Auditor (CISA)

• Provide Business and IT management with guidance on IT risk management matters, particularly on application and infrastructure security.
• Conduct audits or lead audit teams in performance of IT audits and reviews of systems, applications and IT processes. Prepare and report results to executives and Audit Manager.
• Planning, scoping and execution of audit procedures and the creation of audit reports though on- demand or schedule-based channels.
• Performs annual SOX/J-SOX testing of technology controls (ITGC, ITAC, etc.), ISO 27001:2013, Privacy and Software compliance audit.
• Carry out outsource security assessments across several vendors, technologies, and projects. Continually monitor and update the assessment of the control environment, keeping abreast of significant control issues, trends and developments.
• Performs information control reviews to include system development standards, operating procedures, system security,
• Programming controls, communication controls, backup and disaster recovery, and system maintenance
• Coordinates and interacts with external auditors, administrators, faculty, staff and law enforcement officials as appropriate.
• Draft audit findings and recommendations and Communicates findings, impacts and recommendations to various peers of management.
• Prepares audit finding notes and working papers to ensure that adequate documentation exists to support the completed audit and conclusions.
• Prepares and presents written and oral reports and other technical information in a pertinent, concise, and accurate manner for distribution to management.
• Follows up on audit findings to ensure that management has taken corrective action(s).
• Continuously assesses opportunities to improve the internal control environment across entities.

Job Types: Full-time, Permanent, Contract
Contract length: 24 months Salary: Up to $10,000.00 per month Benefits:

• Cell phone reimbursement
• Dental insurance
• Health insurance
• Professional development
• Promotion to permanent employee

Schedule:

• Day shift
• Monday to Friday

Supplemental pay types:

• Yearly bonus

Experience:

• IT auditing: 5 years (Required)

License/Certification:

• Certified Information Systems Auditor (CISA) (Required)
• ISO 27001:2013 Lead Auditor (Required)