IT Auditor
Apply NowCompany: ECS
Location: Reston, VA 20191
Description:
ECS is hiring an IT Auditor and Subject Matter Expert to provide IT audit liaison activities and provide advice to a mix of government and contractor officials and conduct IT internal control testing over the business systems used to generate the agency financial statements. The work will be on site and a government facility in Reston, VA.
Duties and responsibilities:
- Evaluate the design and effectiveness of IT controls across the suite of business systems.
- Conduct tests around financial system controls compliance, IT General Computer Controls and Application Controls, Access Controls and Configuration management controls.
- Review documents, records, reports and methods for accuracy and effectiveness.
- Conduct testing and prepare work-papers, write-ups, and memos.
- Hold preliminary discussions of apparent deficiencies with system owners and external auditor.
- Report audit findings and make recommendations for the correction of unsatisfactory conditions.
- Review corrective action plans identifying findings and provide recommendations.
- Liaise with external auditors and stakeholders during the annual IT audit.
- Educate stakeholder with what to expect and support a successful IT audit.
- Develop thorough and defendable remediation packages for Notices of Findings and Recommendations (NFRs).
- Eight years of relevant experience with a bachelor's degree or six years of relevant experience with a master's degree.
- Current Top Secret (TS) security clearance with eligibility to obtain a TS/SCI.
- One or more of the following certifications: CISA, CISM, CISSP, CRISC.
- Knowledge of OMB A-123 Management's Responsibility over Internal Controls.
- Knowledge of Generally Accepted Government Auditing Standards (GAGAS).
- Exceptional communication skills, both verbal and written.
- Proficiency with Microsoft Office (Word, Excel, PowerPoint).
- Excellent analytical and organizational skills.
- Experience performing FISCAM, NIST, OMB Circular A-123 internal control, audit readiness, SSAE 16, and FISMA security reviews.
- Availability to support 10% local travel.
Duties and responsibilities:
- Evaluate the design and effectiveness of IT controls across the suite of business systems.
- Conduct tests around financial system controls compliance, IT General Computer Controls and Application Controls, Access Controls and Configuration management controls.
- Review documents, records, reports and methods for accuracy and effectiveness.
- Conduct testing and prepare work-papers, write-ups, and memos.
- Hold preliminary discussions of apparent deficiencies with system owners and external auditor.
- Report audit findings and make recommendations for the correction of unsatisfactory conditions.
- Review corrective action plans identifying findings and provide recommendations.
- Liaise with external auditors and stakeholders during the annual IT audit.
- Educate stakeholder with what to expect and support a successful IT audit.
- Develop thorough and defendable remediation packages for Notices of Findings and Recommendations (NFRs).
- Eight years of relevant experience with a bachelor's degree or six years of relevant experience with a master's degree.
- Current Top Secret (TS) security clearance with eligibility to obtain a TS/SCI.
- One or more of the following certifications: CISA, CISM, CISSP, CRISC.
- Knowledge of OMB A-123 Management's Responsibility over Internal Controls.
- Knowledge of Generally Accepted Government Auditing Standards (GAGAS).
- Exceptional communication skills, both verbal and written.
- Proficiency with Microsoft Office (Word, Excel, PowerPoint).
- Excellent analytical and organizational skills.
- Experience performing FISCAM, NIST, OMB Circular A-123 internal control, audit readiness, SSAE 16, and FISMA security reviews.
- Availability to support 10% local travel.