Reach Your Peak with ICMA-RC, a FINANCIAL SERVICES LEADER in public sector employee retirement products and services. Headquartered in Washington, DC, our Financial Services corporation administers over $50 billion in retirement plan assets for more than one million participant accounts. We are constantly looking for ways to create new opportunities to serve our participants. We have an extraordinary talent base and invite you to consider joining ICMA-RC's Internal Audit Team.
Facilitate IT Audit functions, focusing on three areas: Technology Audit, Data Analysis, and further integrating and automating the audit function. Conduct information technology (IT) audits, general computer controls testing, vendor due diligence, risk assessments, and reviews to determine compliance with regulatory guidance, standards (e.g. COSO, CIS, ISO) and best practices. Work directly with Internal Audit management and occasionally with the Vice President of Internal Audit. Interface directly with multiple levels of management in various divisions throughout the corporation.
Essential functions for this role include:
Prepare walkthrough narratives, flowcharts, risk assessments and research necessary to gain an understanding of the business processes, underlying information technology, information security, pertinent legal and regulatory requirements and key control activities to be evaluated.
Use data analysis tools such as Audit Command language (ACL) to automate audit testing and develop techniques for continuous auditing and analyzing large volume of data.
Develop and perform audit procedures to assess the Information Technology (IT) and Enterprise Security (ES) control environment relating primarily, but not exclusively, to network infrastructure, information security, cloud based systems and vendors (e.g. SaaS, IaaS, PaaS), systems development and implementation, application security, database management, disaster recovery/business continuity, telecommunications, and risk management.
Work independently, under the general direction of Internal Audit management, to create risk matrices, audit programs, plan, execute, and document audit projects in a timely and complete manner.
Use CCH TeamMate Audit Management System to document audit workpapers.
Develop and maintain effective internal client relationships.
Communicate and validate audit results with clients and prepare thorough written reports and oral presentations for Management.
Perform other duties as assigned (management requests, special projects, integrated audits, data analysis).
If you have the following credentials, we encourage you to apply:
BA/BS or equivalent experience; CIA (Certified Internal Auditor) or CISA
3-5 years of experience; 3+ years auditing experience and 1+ years of data analysis experience. Experience in creating risk assessments of control environments. Experience in the financial services industry is preferred.
ACP or ACDA (ACL Profession or ACL Data Analyst) preferred
Experience performing Information Technology Audit Procedures and risk assessments
Familiar with industry recognized IT and security best practices and standards
Experience with data analysis tools and techniques, and in performing data analysis
Extensive experience using ACL and/or SQL to analyze data contained in relational databases and flat files.
Excellent written and verbal communication skills
Proven ability to investigate, and uncover all pertinent information necessary to draw fact-based conclusions
Familiarity with the COBIT and COSO framework
Ability to foster collaborative relationships with audit clients
Knowledge of FINRA and/or SEC Compliance preferred
Financial services, defined contribution securities industry background preferred
Founded in 1972, ICMA-RC is a non-profit independent financial services corporation focused on providing retirement plans and related services for more than one million public sector participant accounts and approximately 9,000 retirement plans.
Our mission is to help build retirement security for public employees. We deliver on our mission by focusing on service, quality and value. All of our retirement programs, administrative services and educational tools have been developed specifically for public sector retirement plan administrators and participants.