Develops a comprehensive information technology (IT) risk assessment and audit plan for internal auditing within ERIE in conjunction with the department manager. Oversees audits and special projects conducted by the department. Also supervises assignments related to Sarbanes-Oxley compliance and guides less experienced staff.
Duties and Responsibilities
Assists the department manager in developing a comprehensive, company-wide risk assessment program for the IT function and corresponding audit plan and budgets. Develops individual audit plans for specific audits.
Oversees complex audits and projects. Ensures assignments are completed according to established procedure, budget and scope.
Reviews audit work papers and reports to ensure adequate documentation. Ensures recommendations are effective and reasonable. Monitors the status of corrective actions resulting from report recommendations.
Prepares materials for periodic presentations to the Audit Committee and executive and senior management.
Participates in special audits or investigations and other corporate projects as directed.
Maintains and applies a current knowledge of IT systems, concepts and discipline; and auditing skills and techniques. Remains current on trends and issues affecting the insurance industry and the internal auditing profession.
Assists the department manager in ensuring department staff and work products meet the professional standards and guidelines set by the Institute of Internal Auditors.
Cultivates client relationships.
Ability To Learn And Follow Procedures
Ability To Maintain Composure
Ability to Manage Complexity
Developing And Maintaining Relationships
Information Management Skills
Planning And Organizing
Bachelor's degree in Management Information Systems, Computer Science, or accounting, or related field, required. Eight years IT audit-related experience required, at least four years of which must be in auditing the IT function. Demonstrated experience performing computer-specific and general control audits of mainframe and distributed server platform, telecommunications, information security and integrated systems and workflows required. In-depth knowledge of the systems development life cycle, project management, and data base structures, mainframe and local area network environments and related software required. Supervisory experience preferred. Willingness to pursue and complete professional certification, such as CISA, CPA, or CIA required. Occasional overnight travel required.
Lifting 0-20 lbs; Occasional (<20%)
Lifting 20-50 lbs; Occasional (<20%)
Lifting Over 50 lbs; Occasional (<20%)
Pushing/Pulling; Occasional (<20%)
Manual Keying/Data Entry; Often (20-50%)
Nearest Major Market: Erie Job Segment: Telecom, Telecommunications, Mainframe, Computer Science, Information Systems, Technology