Forge Search
Information Technology Audit Manager
Forge Search, Boise, Idaho, United States, 83708
We are working on an exciting opportunity for an
IT Audit Manager
to join our client's dynamic Internal Audit team. The IT Audit Manager will oversee, perform, and execute the annual internal audit plan of IT, operational, field, compliance, regulatory, and investigative audits to ensure the reliability of information, compliance with policies and regulations, the safeguarding of assets, the efficient use of resources, and alignment with operational objectives.This is a great opportunity to join a tight-knit and well-respected team where you will truly see your fingerprints on the organization!This position is fully on-site in Boise, Idaho.ESSENTIAL DUTIES & FUNCTIONS:Assist in developing and maintaining the Internal Audit IT Risk Assessment.Oversee the development of IT Audit staff and ensure the execution of the annual audit plan.Plan and perform
risk based /security audits in applications (internal & external facing), databases, operating systems, network, sensitive data, patch management, change management, BCP/DR, third party, cloud, etc.Perform regulatory or compliance audits as required.Interact with external audit firms and provide guidance and support for audit engagements.Effectively analyze and assess risk to develop audit procedures, execute test procedures, and conclude on the operating effectiveness of relevant controls through the development of formal reports.Leverage appropriate resources for planning the audit engagement, and effectively lead interviews/meetings to ensure relevant information is obtained for analysis.Perform an appropriate level of testing based on the scope and risk, without over- or under-auditing.Produce work paper documentation that is clear and concise and provide adequate detail of work performed and conclusions reachedCommunicate obstacles or problems as they are encountered throughout the audit.Step up to plan and lead audits when and as required.Identify control issues and findings timely, and ensure findings are based on relevant facts and are accurately characterized (based on risk).Clearly communicate control findings to Internal Audit Management as they are identified.Keep up to date with emerging technologies/IT risks and identify/leverage audit best practices.Work with external auditors to coordinate IT coverage across areas of responsibility and ensure that audit work is comprehensive and sufficient to allow the external auditors to rely on the work.QUALIFICATIONS:Bachelor's degree in related field required (e.g., Computer Science, Management Information Systems, Accounting)CISA, CISSP, CISM, or other relevant certification is required.4+ years of internal and/or external IT audit experience required.Mix of operational and IT audit experience desired.Prior management/supervisory experience desired.Experience as project lead including: Risk Assessment, Planning, Audit execution, Issue/report writingBusiness risk awareness and appropriate judgment to use a risk-based approach while executing the audits.High level of tact and ability to communicate complex and potentially sensitive issues to various levels of management - both within IT functions and outside to key non-technical business personnel.Can conform to shifting priorities, demands and timelines through analytical and problem-solving capabilities.Understanding of COBIT, ISO 27002, NIST, ITIL, etc. is required; Knowledge of SOX 302/404, SSAE 16/SOC1/2/3, PCI and/or GLBA is a plus.For confidential consideration,
email careers@
or apply directly!
IT Audit Manager
to join our client's dynamic Internal Audit team. The IT Audit Manager will oversee, perform, and execute the annual internal audit plan of IT, operational, field, compliance, regulatory, and investigative audits to ensure the reliability of information, compliance with policies and regulations, the safeguarding of assets, the efficient use of resources, and alignment with operational objectives.This is a great opportunity to join a tight-knit and well-respected team where you will truly see your fingerprints on the organization!This position is fully on-site in Boise, Idaho.ESSENTIAL DUTIES & FUNCTIONS:Assist in developing and maintaining the Internal Audit IT Risk Assessment.Oversee the development of IT Audit staff and ensure the execution of the annual audit plan.Plan and perform
risk based /security audits in applications (internal & external facing), databases, operating systems, network, sensitive data, patch management, change management, BCP/DR, third party, cloud, etc.Perform regulatory or compliance audits as required.Interact with external audit firms and provide guidance and support for audit engagements.Effectively analyze and assess risk to develop audit procedures, execute test procedures, and conclude on the operating effectiveness of relevant controls through the development of formal reports.Leverage appropriate resources for planning the audit engagement, and effectively lead interviews/meetings to ensure relevant information is obtained for analysis.Perform an appropriate level of testing based on the scope and risk, without over- or under-auditing.Produce work paper documentation that is clear and concise and provide adequate detail of work performed and conclusions reachedCommunicate obstacles or problems as they are encountered throughout the audit.Step up to plan and lead audits when and as required.Identify control issues and findings timely, and ensure findings are based on relevant facts and are accurately characterized (based on risk).Clearly communicate control findings to Internal Audit Management as they are identified.Keep up to date with emerging technologies/IT risks and identify/leverage audit best practices.Work with external auditors to coordinate IT coverage across areas of responsibility and ensure that audit work is comprehensive and sufficient to allow the external auditors to rely on the work.QUALIFICATIONS:Bachelor's degree in related field required (e.g., Computer Science, Management Information Systems, Accounting)CISA, CISSP, CISM, or other relevant certification is required.4+ years of internal and/or external IT audit experience required.Mix of operational and IT audit experience desired.Prior management/supervisory experience desired.Experience as project lead including: Risk Assessment, Planning, Audit execution, Issue/report writingBusiness risk awareness and appropriate judgment to use a risk-based approach while executing the audits.High level of tact and ability to communicate complex and potentially sensitive issues to various levels of management - both within IT functions and outside to key non-technical business personnel.Can conform to shifting priorities, demands and timelines through analytical and problem-solving capabilities.Understanding of COBIT, ISO 27002, NIST, ITIL, etc. is required; Knowledge of SOX 302/404, SSAE 16/SOC1/2/3, PCI and/or GLBA is a plus.For confidential consideration,
email careers@
or apply directly!