Information Technology Auditor

Must-Haves :

• 3 years of experience in IT Audit.
• Familiarity with cybersecurity frameworks (NIST, ISO 27001, FFIEC CAT).
• Knowledge of compliance (e.g., NY DFS) and data privacy.
• Experience with process automation, cloud security, and data analytics tools (e.g., ACL).
• Proficiency in internal auditing principles, documenting processes, risks, and controls.
• Ability to lead audit planning and execution, develop risk and control matrices, and document findings.
• Proficiency in creating well-structured audit reports and workpapers.

Plusses :

• Financial services industry experience.
• Industry certification preferred (e.g., CISA, SANS, CIPP).

Day-to-Day Responsibilities :

• Plan and execute audits, advisory projects, and general control testing with minimal supervision.
• Conduct interviews and walkthroughs with business and technology owners.
• Lead the audit planning process, including scope development and preparing planning memos.
• Design and execute control tests, perform risk evaluations, and document findings.
• Communicate audit results in meetings and develop clear and concise audit reports.
• Ensure compliance with company internal audit procedures and the IIA’s International Professional Practices Framework (IPPF).
• Supervise, guide, and develop less experienced team members.
• Maintain professional ethical standards and contribute to organizational improvement.