Senior IT Auditor, Infrastructure, Data and Cybersecurity

Internal Audit’s mission is to provide independent objective assurance and consulting services designed to evaluate and improve the control environment and operations of the Company, its subsidiaries, and affiliated entities. The Department helps the organization accomplish its objectives by bringing a systematic, disciplined approach to evaluate and improve the effectiveness of risk management, control, compliance, and governance processes. Under the direction of the Head of Infrastructure, Cybersecurity and Data/AI - Internal Audit, this position functions as a working IT audit project manager, fully responsible for planning, executing, communicating issues and progress, and reporting audit results, individually and, on occasion, as part of a larger IT audit or integrated audit team. This job is predominately focused on performing high quality, value-add, assurance services that identify, evaluate and report on complex IT risks and controls in accordance with the Institute of Internal Auditors Global Standards and established methodologies. This position contributes to the enterprise risk management framework through effective planning, execution, and reporting on IT audit projects. In this role, you will evaluate the design and operating effectiveness of controls and make recommendations to improve the control environment. You are An experienced IT auditor that is a highly motivated self-starter, with the ability to work effectively as an independent contributor or team member. You have the ability to multi-task and quickly adapt to changing priorities while working under moderate supervision and can discuss technical issues in general business language. You have Bachelor’s degree is required. Mathematics, Statistics, Information Systems, Computer Science, or other IT-related degree is a strong plus. Professional certifications (CIA, CISM, CISA, CRISC, CISSP, CPA, CFE) attained or in progress. Minimum of 7 years of experience in IT internal/external audit, or IT-related functions. Experience/ability to independently evaluate IT general controls over security processes, infrastructure, network, applications/software, cloud services, and databases according to established timetables and requirements. Knowledge of infrastructure environments (e.g., operating systems, databases, networks, middleware, virtualization technologies, etc.) and cloud services/technologies (e.g., Amazon Web Services). Strong project management and organizational skills, with the ability to multi-task and meet deadlines. Data collection and data analytics skills, including familiarity with tools (e.g., TeamMate Analytics, Tableau, etc.) a strong plus. Experience in the insurance or financial services industry is helpful but not required. Strong interpersonal skills, with the ability to build strong relationships and clearly articulate thoughts and ideas. Ability to collaborate with others, both inside and outside of the department, while working toward common goals and fostering understanding and agreement. Strong written and oral communication skills, with the ability to write clearly and concisely. Strong analytical skills, with the ability to effectively analyze an IT process and assess risks and controls. Ability to identify root causes of process breakdowns. Recognizes broader implications of issues. Demonstrated knowledge of internal audit standards and leading practices. Proficient in Excel, Word, Visio, and PowerPoint. Familiarity with TeamMate+ is preferred but not required. Experience with Agile auditing is helpful but not required. You will Develop an understanding of management’s objectives and processes using data analysis skills. Use well developed data collection skills to acquire an understanding of the process, risks, and controls. Create flowcharts, process maps, and/or narratives to analyze and evaluate the effectiveness of management's control design in addressing associated risks, identifying control gaps or potential improvements. Prepare audit planning memos to set audit scope and objectives. Formulate and execute audit procedures that test the design and operating effectiveness of key controls. Prepare communications covering issues and progress. Lead project-related meetings and discussions, as well as periodic touchpoints with IT area management. Obtain management input on solutions to control gaps. Write value-added audit conclusions, presenting findings to both Internal Audit and IT management, to proactively manage risk. Prepare clear, concise, high quality audit reports and other audit documents that comply with the Department’s methodology, and communicate relevant issues and effective, value-added recommendations. Manage work so that projects are completed on time and within budget. Reporting Relationship As a Lead IT Auditor, you will report to the Head of Infrastructure, Cybersecurity, Data and AI, Internal Audit, who reports to the Head of Internal Audit – Digital, Technology, Security, Data/AI, an Apply tot his job Apply To this Job