IT Auditor

Job description / Role

An IT auditor is responsible for the internal controls and risks of a company’s technology network. This role includes identifying the weaknesses in a systems network and creating an action plan to prevent security breaches in the technology. An IT auditor can also be involved in the planning and execution of internal audit procedures and the creation of internal audit reports. An auditor must work within a team to create a solid information technology infrastructure and collaborate with clients to devise and put in place policies and procedures regarding network security issues.

Summary
Under indirect supervision, performs detailed evaluation and internal control and audit reviews of computer information systems. Consults with administrators and staff on computer information systems operational issues.

Duties and Responsibilities
• Performs general and application control reviews for simple to complex computer information systems.
• Performs information control reviews to include system development standards, operating procedures, system security, programming controls, communication controls, backup and disaster recovery, and system maintenance.
• Directs and/or performs reviews of internal control procedures and security for systems under development and/or enhancements to current systems.
• Maintains and develops computerized audit software.
• Prepares audit finding memoranda and working papers to ensure that adequate documentation exists to support the completed audit and conclusions.
• Prepares and presents written and oral reports and other technical information in a pertinent, concise, and accurate manner for distribution to management.
• Consults with and advises administrators, faculty, and staff on various operational issues related to computerized information systems, and on general business operations as needed.
• Follows up on audit findings to ensure that management has taken corrective action(s).
• Coordinates and interacts with external auditors, administrators, faculty, staff and law enforcement officials as appropriate; may be required to testify in court.
• Assists and trains other audit staff in the use of computerized audit techniques, and in developing methods for review and analysis of computerized information systems.
• Maintains currency of knowledge with respect to relevant state-of-the-art technology, equipment, and/or systems.
• Conduct operational, compliance, financial and investigative audits, as assigned.
• Performs miscellaneous job-related duties as assigned.

Requirements

• Bachelor's degree in Accounting, Business Administration, Computer Science or Business related field; at least 3 years of experience directly related to the duties and responsibilities specified. Certification/Licensure Cert Information Systems Auditor (CISA), OR Cert Internal Auditor (CIA), OR Cert Public Account (CPA).
• Completed degree(s) from an accredited institution that are above the minimum education requirement may be substituted for experience on a year for year basis.

Knowledge, Skills and Abilities Required
• Knowledge of financial and system audit techniques and VAT rules and regulations.
• Knowledge of current technological developments/trends in area of expertise.
• Knowledge of auditing concepts and principles.
• Ability to evaluate and review a range of mainframe, PC, and distributed production and applications computer systems.
• Ability to gather data, compile information, and prepare reports.
• Ability to perform control reviews on systems development, operation, programming, control, and security procedures and standards.
• Ability to review system backup, disaster recovery and maintenance procedures.
• Ability to communicate with and understand the requirements of professional staff in area of specialty.
• Ability to create, compose, and edit written materials.
• Knowledge of software requirements for the auditing of computing systems and procedures.
• Knowledge of computer systems development and programming.
• Knowledge of general accounting principles.
• Knowledge of university and/or public auditing policies, standards, and procedures.
• Knowledge of federal, state, and local laws, regulations, and standards governing all aspects of the utilization of computer systems.
• Ability to persuade and influence others.

About the Company

XB4 was formed in Pennsylvania in 2003, in the wake of the Enron-Andersen collapse, when serious quality and confidence challenges were facing the accounting world, and in particular the Big Four. Founded by a CPA with years of experience working in and out of the Big Four Accounting firms, XB4’s earliest goal was to deliver assurance, tax and financial advisory services that combined integrity and transparency with highly individualized professional care. In other words, bigger is not necessarily better.

All our clients are important. All their concerns are significant, and all our clients can expect that with XB4 they will receive services that will add value to their organizations or businesses. At XB4, our goal is to serve and protect the interest of our profession, therefore, we are here to deliver more than just a name.

We pride ourselves on a team that comprises of former Big Four Partners and staff. They bring with them decades of experience across a range of industries and organizations, in the public and private sectors, both profit and non-profit entities. Our approach combines a number of key ingredients that makes XB4 unique from other firms:

• thorough understanding of the applicable Standards and regulations;
• strong competency in local and international best industry practices;
• use and rely on the latest and best technology;
• individualized research;
• accessibility to our clients and communities; and
• trusted, honest, reliable, and timely service.

At XB4, we believe ethics are real values, and not just another box on a check-list. If you share our values, please join us!