Senior IT Auditor
Role details
Job location
Tech stack
Job description
The Senior IT Auditor is a hands-on, IT-primary role within the Internal Audit Department, responsible for executing and managing SOX IT General Controls (ITGC) and delivering enterprise-wide IT and integrated audit services globally. The role pairs deep IT audit expertise with the ability to test and assess general business-process and financial controls under SOX, giving the team a versatile, cross-trained auditor who can move fluidly between technology and business risk., Reporting to the IT Audit Manager, the Senior helps define audit scope, identify key risk areas, and review relevant controls in support of the annual, risk-based audit plan. The Senior also guides staff auditors, leads stakeholder meetings, and communicates results and recommendations clearly to management at all levels. The ideal candidate combines strong technical auditing skills with curiosity, efficiency, and a continuous-improvement mindset, including the use of data analytics and automation to sharpen audit insight., * Take primary responsibility for the timely execution and management of SOX IT General Controls across access, change management, and IT operations.
-
Develop control testing plans, perform test procedures, and document results for SOX, IT system assessments, and other compliance audits.
-
Evaluate the design and operating effectiveness of IT controls over applications, databases, operating systems, networks, reporting tools, and data center operations.
-
Conduct and document IT systems implementation reviews, and assess new system developments and implementations for control impact.
-
Assess server security, disaster recovery, general computer controls, and emerging technology risk.
-
Evaluate the design and operating effectiveness of business-process and financial controls under SOX, partnering on integrated audits that span IT and business areas.
-
Identify control gaps, process inefficiencies, and improvement opportunities across both IT and business processes.
-
Identify financial, operational, and compliance risks to the organization and recommend corrective actions and risk mitigation.
-
Participate in other compliance projects as assigned (e.g., data security, privacy/HIPAA, regulatory reviews).
-
Oversee and guide multiple audit projects running simultaneously, acting as primary point of contact, leading client meetings, making decisions, and resolving complex issues as they arise.
-
Support and guide staff auditors in executing test procedures and ensure deadlines are met.
-
Complete all audit fieldwork on the established schedule and communicate results to the IT Audit Manager, Director of Internal Audit, and business owners as required.
-
Help develop the scope of audits and contribute to proposals for IT and integrated audit requests.
-
Support coordination of external auditor reliance on internal audit work.
-
Prepare clear, concise audit workpapers, findings, and summary reports.
-
Recommend and help implement practical solutions to strengthen controls and streamline processes.
-
Leverage data analytics, automation, and AI tools to enhance audit efficiency and insight.
-
Participate in departmental initiatives to modernize internal audit practices and documentation.
-
Work with business and IT groups to understand how systems are used relative to established policies, processes, and controls, and design appropriate risk-based testing.
-
Communicate findings and process recommendations in a poised, diplomatic, and effective manner.
-
Partner with cross-functional teams to drive timely resolution of control issues.
-
Contribute to a culture of accountability, adaptability, and continuous learning within the audit team.
Requirements
-
Bachelor's degree in Information Systems, Computer Science, Accounting, Finance, or a related field.
-
Typically 3-7 years of IT audit and/or internal audit experience, with strong exposure to SOX (ITGC and business-process controls).
-
Working knowledge of COBIT and COSO frameworks, generally accepted accounting principles, and IT audit techniques.
-
Strong analytical and technical skills, including assessment of applications, relational databases, operating systems, and networks; familiarity with enterprise software environments.
-
Demonstrated ability to manage multiple priorities, meet deadlines, and interact with management at all levels.
-
Excellent written and verbal communication, organization, and stakeholder-management skills.
-
Professional certification such as CISA, CISM, CIA, CPA, CMA, or Chartered Accountant.
-
Experience leading integrated audits and guiding staff auditors.
-
Hands-on experience applying data analytics or automation to audit work., * You take ownership of your work and deliver results with precision and integrity.
-
You're adaptable - able to balance structure with creativity in a fast-moving environment.
-
You seek to make processes better, not just compliant.
-
You bring curiosity, collaboration, and humility to every project.