Senior IT Auditor

US-IL-Lincolnshire
Job ID
41177
Function
Finance

Overview

The Senior Information Technology Auditor leads in the execution of Information Technology (IT) audits, including those audits facilitated over the IT organization and the IT aspects of the company’s financial, operational, and compliance audit projects.   Reporting to the Manager, Internal Audit, the Senior Information Technology Auditor is responsible for the supervision of Internal Audit Staff and Interns from both our Zebra Internal Audit team and our Cosource Internal Audit Partner.

Responsibilities

  • Responsible for planning, leading, and executing IT audit projects and the IT portion of integrated audits (other financial, operational, and compliance projects with an IT sub-focus):
    • Performs upfront Internal Audit project planning, including the definition of audit scope and audit work programs
    • Leads interviews to understand the business process and application flow and documents the business process in a set of flowcharts or narratives
    • Evaluates the effectiveness of the design of controls for business processes and executes testing of internal controls, identifying exceptions
    • Incorporates the use of data analytics where appropriate to improve the audit efficiency and broaden the audited population
    • Summarizes the audit results in an audit report and presents results to management
    • Ensures that Zebra IA methodology is adhered and that workpapers are compliant with the Institute of Internal Auditors' Professional Standards for Internal Auditing
  • Leads or assists in the execution of SOX compliance auditing of the IT General Controls (ITGCs), including the evaluation of the design of these SOX controls, the completion of ITGC SOX walkthroughs, and testing the effectiveness of ITGC SOX controls.
  • Assists with efforts to evaluate system access and segregation of duties and evaluates the company’s cyber security strategies and processes.
  • Participates as an independent resource on new systems development and implementation projects to ensure controls are properly designed and in place.
  • Provides the Internal Auditor (and other team members, as relevant) with appropriate guidance during the course of project work.
  • Ensures that IA Management and the audited party are kept up to date with potential audit findings during the course of fieldwork.
  • Takes the lead role on moderate to high complexity projects and works under closer supervision of a Manager or Director on some projects classified as having very high complexity.
  • Over time, begins to take on responsibilities at the next level.
  • Sets appropriate project direction for Internal Auditor(s), Intern(s), Guest Auditor(s), and/or outsourced audit team member(s).
  • Provides constructive feedback and concrete action steps to Internal Auditor(s), Intern(s), Guest Auditor(s), and outsourced team member(s) to continually improve performance.
  • Builds a good rapport and solid business relationships with the Zebra Management Team.

Qualifications

  • Bachelor's degree in Accounting Information Systems, Management Information Systems, Computer Science, or other related Business degree AND either:
  • 4-8 years of professional work experience in the industry (including at least 3-4 years specific to the IT auditing field) OR
  • 3-7 years of experience with a leading public accounting firm (focused on IT audit, including at least 1 year of ERP controls auditing, consulting and/or implementing)
  • Command over risk and internal controls specific to information technology, including, but not limited to those risks and controls specific to system implementation / change management
  • Relevant certification (i.e., CISA, CISSP, CIA, CPA, CFE, or other relevant certification) is a plus.
  • General knowledge of ISO 27000 is a plus.
  • Experience auditing major ERP systems; Knowledge specific to Oracle ERP is a strong plus
    • Demonstrates some understanding of ERP core financial modules, projects, some industry-specific modules and/or bolt-on products, and GRC technology.
    • Demonstrates some knowledge of security and control (including configuration) for ERP applications and/or technologies.
    • Demonstrates some knowledge of the design, implementation, and/or assessment of controls, including an understanding of the systems implementation lifecycle, as well as configuring and optimizing business process controls and application security.
    • Demonstrates some understanding of business processes related to core ERP modules, including knowledge of industry-specific modules/products and/or direct experience configuring and implementing an ERP.
    • Thorough understanding of audit methodologies and processes (e.g., COSO, COBIT).
  • General knowledge of IIA Standards is a plus.
  • Proficiency in PC-based computer systems, including Microsoft Office programs and Visio. Knowledge of audit software such as Teammate AM and ACL is a plus.

Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share with your network