Senior IT Audit Specialist

Get AI-powered advice on this job and more exclusive features. Our client is a global provider of enterprise software solutions serving a variety of distinct vertical markets. They acquire, manage and build vertical market software businesses. Generally, these businesses provide mission critical software solutions that address the specific needs of our customer’s vertical markets. Their focus on acquiring businesses with growth potential, managing them well and then building them has allowed them to generate significant cash flow and revenue growth. Responsibilities of the Senior IT Audit Specialist include: Full scope, end-to-end responsibility in the delivery of IT audit engagements in accordance with the CSI Internal Audit plan with guidance and direction from the VP Internal Audit. Perform risk assessments and ensure that audit scope covers all significant IT risks. Provides audit support for the CSI CEO/CFO certification program under NI 52-109. Leading and executing IT audit engagements independently, in accordance with the CSI Internal Audit plan across subsidiary companies, including scoping and planning, testing as well as reporting and following-up with management. Translating high priority technology and cyber security risks into actionable audit programs including documenting risks, controls and building test steps. Execution of selected assignments as part of a broader audit engagement including establishing milestones, completing work assignments, testing and being accountable for results. Preparing audit reports based on documented working papers that support opinions and recommendations to improve processes, systems and internal controls. Develops and provides practical “fit for purpose” recommendations to management that address risks and improves the IT control environment. Shares and collaborates learnings on approaches and findings with other IA team members, for wider sharing of lessons learned and potential company-wide implications of observations. Review and analysis of key quarterly financial checklists and information from subsidiary operating groups. Provide consultation services to management on issues related to IT risk assessment, governance, and control systems, as required. Participate in special investigations related to information technology and system configurations, when required. Other ad-hoc operational analyses and special projects as directed by the VP Internal Audit. Requirements : Certified Information Systems Security Professional (CISSP) or Certified Information Systems Auditor (CISA) designation is required. Minimum of 3 to 5+ years experience including with Big 4. Experience should include conducting IT general controls audits and SOC2 reviews and familiarity in infrastructure management, IT operations, information security and application management. Solid understanding of processes and controls related to business applications, networking functionality, databases, operating systems, and other infrastructure. In-depth knowledge in security controls specifically in infrastructure security including SIEM, Log Management, Data Loss Prevention, Endpoint Security, Network and Security Monitoring. Must possess knowledge of risk assessment as well as good knowledge of various technologies and the ability to analyze and form an opinion on risks and controls relating to systems, IT infrastructure and the areas they support. Ability to work independently with minimal supervision in remote settings as required. Experience in building risk-based audit programs, Risk Controls Matrices and controls documentation required. Willing and able to travel up to 30% of the time within North America and Internationally. If you are already registered with The Mason Group, please contact your Recruiting Consultant directly with reference to job #19580. Seniority level Associate Employment type Full-time Job function Accounting/Auditing Industries Accounting #J-18808-Ljbffr