Job description 

As part of an IT Audit modernization, the Audit team has implemented several process changes to improve the experience for the operation, focusing on a risk-based auditing approach. This position calls for an innovative person who will identify, embrace, and implement new approaches, while persistently asking the question: what is it that we should audit? Career development opportunities could include roles within the core IT organization or within the Internal Audit function. 
 

RESPONSIBILITIES

• Develop a comprehensive understanding of the organization’s business processes, goals, and strategy in order to provide sound analysis and interpretation of IT risks and technology challenges 

• Be responsible for the examination and analysis of technology and business risks by performing IT audit work, developing audit plans, scope, procedures, and preparing audit reports 

• Research industry trends applicable to the environment including automotive, financial, mobility, technology, cyber, and audits 

• Assist in developing a risk-based IT audit plan; assist in assessing areas of risk requiring IT audit procedures; and execute IT audit procedures based on risk and impact to the business, across different applications, technologies and business processes, and in collaboration with internal and external partners and monitor completion of planned actions 

• Support departmental transformation initiatives with pilots of new processes and audit responses 

• Proactively identify areas of business initiatives and changes in the business environment and assess their impact on the business and the control environment

• Partner with global business audit on joint business and IT audits 

• Interact regularly with Cyber Defense, Internal Controls, Office of General Council (OGC) and Enterprise CyberSecurity & Policy teams 

• Travels may be required as part of this role

QUALIFICATIONS

• Audit certification desirable (CISA or similar technical certification) 

• Extensive knowledge of industry security frameworks (NIST, ISO, etc.) and understanding of inherent risks and/or control risks 

• Supplier relationship management experience 

• Well versed in auditing digital risk, with the ability to address the effects of robotics process automation (RPA) and cognitive intelligence (CI) on processes, management, and the organization 

• Comfortable working in a dynamic environment with minimal direction

• Excellent verbal and written communication skills with the ability to communicate effectively with all levels of leadership 

• Possesses excellent interpersonal skills, demonstrating professionalism in all actions 

• A variety of IT job experiences preferred including application programming, systems analysis, technical support, database administration, security administration and office automation 

• Proven project management skills and effective at leading multiple initiatives simultaneously with minimal direction

Education Qualification: Bachelor’s degree in Computer Science or Information Technology or Masters of Computer Applications

Number of Years of Experience: Atleast 1 year of IT audit experience and Software experience including software engineering, application development, and/or one year of IT Security or audit experience.