Position Description:
The incumbent will perform the following duties as outlined below.
• Develops a plan to complete the annual ITGC assessment and assist with continuous
monitoring of critical internal controls to include a strategy for ongoing self-assessments,
and the assessment of available supporting technology tools
• Develops a plan to completes the annual risk assessment
• Compiles all assessment results and prepares briefing materials
• Obtain, and analyze documentation, reports, data, flowcharts and Vision diagrams
• Reviews and performs analysis on Service Providers SOC 1 and SOC 2 reports
• Completes security elements of the A-123, Appendix D worksheet
• Tracks and monitors all ITGC deficiencies
• Develops and tracks Corrective Action Plans and implements newly developed controls
• Drafts the annual ITGC report
• Conducts presentations to multiple stakeholders including senior executives as requested
Qualifications:
• BA in Accounting, Information Systems, or Computer Science required
• Minimum of 7 years of experience in conducting Accounting and IT Audits
• Current working knowledge of IT audit methodologies, concepts, tools, and objectives
• Working knowledge of conducting risk assessment and internal controls testing
• At least two (2) years of experience working with Office of Management and Budget’s
(OMB) Circular No. A-123 and/or Federal Information Security Management Act
(FISMA) requirements
• Excellent attention to detail and the ability to communicate both orally and in writing
• Ability to work both independently and as part of a team
• Strong organizational skills
Required:
• CISA certified, CPA or CIA preferred.
Citizenship:
• USA citizens only