Job Description
- Develop and execute comprehensive internal audit plans for IT security and IT business applications, aligned with industry best practices and regulatory requirements (SOX, etc.).
- Lead and manage a team of internal auditors in conducting risk assessments, control testing, and IT-related audits.
- Identify, evaluate, and report on IT security vulnerabilities and control weaknesses.
- Develop and implement recommendations for improving IT security posture and IT controls.
- Partner with IT management to remediate identified control deficiencies and security vulnerabilities.
- Stay current on emerging IT security threats and best practices.
- Communicate effectively with senior management and the Board of Directors regarding IT security and control risks.
- (Optional, depending on your company’s needs) Contribute to the development and implementation of an Enterprise Risk Management framework
We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to . To learn more about how we collect, keep, and process your private information, please review Insight Global’s Workforce Privacy Policy: . Skills and Requirements
- 7+ years of experience in internal auditing, with a minimum of 3 years focused on IT security and IT business applications.
- Experience working in Internal Audit at a Large Financial Institution (as either consulting or internal employee)
- Proven experience in leading and managing internal audit teams.
- Strong understanding of IT security frameworks (e.g., NIST CSF).
- In-depth knowledge of internal controls over financial reporting (SOX). Experience with SOX readiness assessments and compliance.
- Knowledge of Governance, Risk, and Compliance (GRC) technologies.
- Excellent communication, interpersonal, and leadership skills.
- Certified Information System Auditor (CISA) * Certifications: Certified Internal Auditor (CIA) , Certified Public Accountant (CPA),
- Experience with Enterprise Risk Management (ERM) a plus.
- Familiarity with vendor risk management best practices.
- Understanding of SOC 1, 2, and 3 reporting frameworks.
- Expertise in information security for internet, intranet, wireless, and cloud applications.
- Experience with internal business process and IT audit methodologies, including risk and control assessments null
We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal employment opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment without regard to race, color, ethnicity, religion,sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military oruniformed service member status, or any other status or characteristic protected by applicable laws, regulations, andordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request to .