Perform information technology (IT) audits and IT Risk Assessments throughout the Authority. Assist in the development of the annual IT Audit plan. Perform and assist with audits of organizations, which have contractual agreements with the Authority to determine compliance with those agreements including, but not limited to revenue contracts such as concessionaires and tenants, management agreements, and service contracts. Perform audits of IT general controls (ITGCs), application controls, information security, operating systems, database structures and functions, Local Area Networks (LANs), telecommunications, pre and post-implementations of application systems, business continuity program, and disaster recovery plans. Participate in IT initiatives and monitor compliance activities including but not limited to the Payment Card Industry Data Security Standard (PCI DSS). Serves as the primary Internal Audit liaison with the IT department. Develop audit programs and techniques needed to evaluate and test internal controls, including technically complex IT controls in financial and management data systems. Determine the level of compliance with policies, procedures and contracts, and assist with special projects, non-IT audits, or other assignments. Provide audit staff with technical guidance and training on key IT risks and controls as well as available technology-based audit techniques. Perform individual and team assignments on multiple/concurrent audit engagements. Supervise and review the work of non-IT staff assigned to IT audits.
Bachelor degree in Accounting, Business, Engineering, MIS, Information Technology, Computer Science or a related field and at least two (2) years of Information Technology auditing experience required. Prior work experience within IT or IT Security is preferred.
Experience with automated workpaper systems (Auto Audit preferred) and data mining experience (ACL desired).
One (1) certification is required at the time of hire. Preferred certifications include CISA, CIA, CISSP, CGEIT, CRISC, GSNA, GSEC, or CISM; other applicable certifications may be considered. A second certification is required to be obtained within 18 months of employment; the CISA is required either upon hire or within 18 months of employment. Proficient knowledge and experience working with common IT Governance frameworks and standards which include but are not limited to ISACA’s COBIT framework, ISO, NIST, ITIL, data protection and information security requirements, security access and control, data warehousing and ITGCs.
Advanced knowledge and application of the Institute of Internal Auditors’ International Professional Practices Framework, ISACA’s Standards for Information Systems Auditing and information system security and control practices.
Knowledge of networking, operating systems, database and application information security principles.
Knowledge of auditing Microsoft Windows Server Infrastructure, Red Hat/Oracle Linux, Exchange Server, Sharepoint, SQL Server, relational database management systems (RDBMS) such as Oracle and SQL, VMWare, Microsoft Active Directory, and Oracle eBusiness Suite is preferred.
Considerable knowledge of and skill in applying internal auditing and technology principles and practices, identifying risks, analyzing and evaluating internal controls, developing and performing risk assessments, and applying management principles and preferred business practices.
Must have strong and effective oral and written communications skills, project management, problem solving, and analytical skills.
Must be able and willing to travel as needed.
Valid Florida driver’s license required.
Employer does not assist with relocation costs.
About Greater Orlando Aviation Authority (GOAA)
The Greater Orlando Aviation Authority (GOAA) operates OIA and the Orlando Executive Airport. Our airport is a world-class facility serving more than 43 million guests each year and growing. Orlando International Airport (OIA) is the second largest airport in Florida, the 13th busiest in the United States and the 41st in the world ranked by the transportation resource, catalyst and hub in the State of Florida. The number of passengers during calendar year 2016 according to Airports Council International North America (ACI).
The Orlando International and Orlando Executive Aiports are managed by the Greater Orlando Aviation Authority (GOAA), which consists of a seven-member board; five of which are appointed by the Governor of the State of Florida, one member from the Orlando City Council and one member from the Orange County Commission. An Executive Director who is appointed by the Authority Board manages sthe Airport System.
A total of 13,297 acres (5,381 hectares/21 square miles) comprises the airport property, making it the third largest in landmass within the United States.
The Greater Orlando Aviation Authority offers a comprehensive benefits package.
• Pai...d Vacation, Holiday, Sick and Personal Leave Days • Retirement Plan with Company Match • Health, Dental, and Vision Insurance • Wellness Programs • Short Term Disability, Long Term Disability and Life Insurance • Employee Assistance Program • Education Reimbursement • Employee Discounts • Employee Recognition Program• Management Leave