Sr IT auditor
Given the financial nature of this position, this position has been defined as a position requiring a credit check. Prior to being hired, promoted, or transferred into the position, the candidate must successfully pass a credit background check.
SUMMARY:
Under minimal supervision, performs internal audits, detailed evaluations internal control reviews of information systems, platforms and operating procedures in accordance with corporate standards for efficiency, accuracy, security and regulatory compliance including Sarbanes Oxley compliance.
ESSENTIAL DUTIES AND RESPONSIBILITIES:
Plans, leads, and executes Information Technology (IT) audit projects and the IT portion of integrated audits (other financial, operational, and compliance projects with an IT subfocus) using a thorough understanding of audit methodologies and processes (e.g., COSO, COBIT)
Leads or assists in the execution of SOX compliance auditing of the IT General Controls (ITGCs), including the evaluation of the design of these SOX controls, the completion of ITGC SOX walk-throughs, and testing the effectiveness of ITGC SOX controls
Designs, develops and performs data analytic routines using computer-assisted auditing techniques and analyze data requirements to support technical components of detailed audit testing and planned and needed
Assists and trains other audit staff in the use of computer-assisted audit techniques, and in developing methods for review and analysis of computerized information systems
Performs annual IT Risk Assessments; utilizes proficiency in IT infrastructure and IT auditing, evaluates IT infrastructure in terms of risk to the organization and evaluates controls in order to recommend improvements to current risk management controls
Works with Internal Audit management, external auditor, and IT management to develop a risk-based Internal IT audit strategy that complies with professional standards (e.g. IIA, ISACA, GAAS, GAAP), including the requirements of Sarbanes-Oxley Act section 404
Professionally represents the internal audit department when interacting with all levels of company personnel, external auditors and management
Using proficiency in IT infrastructure, IT auditing and auditing methodologies and processes, evaluates IT infrastructure in terms of risk to the organization and evaluates controls in order to recommend improvements to current risk management controls
Assists with efforts to evaluate system access, segregation of duties and evaluates the company¿s cyber security strategies and processes
Consults, from an audit perspective, on new systems development/implementation projects
Consults on IT systems compliance, business process optimization, profit improvement, internal control reviews and various risk assessment and security issues
Conducts special studies as needed to discover root-cause deficiencies in IT systems and/or processes
Recommends controls for prevention and/or system improvements
Prepares reports of findings for senior management and/or Board of Director inquiries
Conducts large-scale audits on any or all Electronic Data Processing (EDP) systems in response to Integrity Line calls, management directives, or other avenues of allegation or disclosure
COMPETENCIES:
Ability to gather, consolidate, analyze, and draw conclusions on the subject matter under consideration
Knowledge of risk and internal controls specific to information technology, including but not limited to those risks and controls specific to system implementation / change management
Knowledge of and ability to utilize computer aided auditing tools (CAAT)
Knowledge of and ability to perform data mining and/or data analytics
Thorough knowledge of and ability to apply generally accepted auditing standards (GAAS) and generally accepted accounting principles (GAAP)
Proficiency in the use of statistical sampling methods and techniques
Ability to coordinate and lead the work of others, either as individual contributors or in a project setting
Ability to perform thorough risk assessments of various processes and departments
Ability to gather and analyze information skillfully and develop alternative solutions
Professionalism and strong client and team relationships
TXNM Energy, Inc.
Albuquerque
New Mexico United States
www.txnmenergy.com
