The City and County of Denver Auditor's Office is seeking Government Senior IT Auditors (Information Systems Audit Seniors). Under the general direction of the assigned Information Systems Audit Manager and/or Information Systems Audit Lead, the IS Audit Senior will conduct performance, IT, and compliance audits, and be responsible for supporting the organization's vision, goals, and objectives. The Information Systems Audit Senior will be responsible for performing full performance professional level auditing work of information systems, general controls, application controls, information systems, processes, procedures, methodologies and generally accepted government auditing standards to review and evaluate financial and operational records for adequacy of internal controls, compliance with policy, Denver Revised Municipal Code (DRMC) rules and regulations, Denver City Charter, and applicable statutes. Responsibilities include planning, completing business process and internal control review engagements, and writing audit reports.
Specific responsibilities include, but are not limited to, the following:
Conducts information technology audits and evaluates City organizations and programs that include, but are not limited to effectiveness, efficiency, public policy assessment, governance, and internal control and compliance objectives as defined by Generally Accepted Government Auditing Standards.
Evaluates organizational operations and/or program results for potential areas of improvement such as operational efficiency, technology optimization, decreased turnaround times, streamlining of processes, and improved customer service with the goal of providing maximum value for resources expended.
Designs various auditing tests, including data analytics to determine the reliability, integrity and internal control of the financial and operational systems for compliance and performance purposes.
Contributes to the identification of risks and the development of risk assessments for information technology audits.
Determines the extent of compliance with IT policies and procedures.
Assists with monitoring third-party contractors conducting information technology and cybersecurity audits.
Applies relevant IT audit and security frameworks such as NIST, FISCAM, COBIT, ISO, etc. while conducting information technology audits and integrated audits.
Gathers, examines, and analyzes information about the organization to be audited using best practices and performance benchmarks that are applicable to that organization.
Prepares audit reports with recommendations for corrective action applying professional judgment and interpretation of applicable IT audit and security frameworks, rules, and standards.
Maintains work papers, schedules, and reports and provides documentation to support audit findings and recommendations.
Provides department support for TeamMate and other audit software tools.
Ability to work independently and as part of a team.
Performs other related duties as assigned or requested.
Due to COVID-19, our employees are currently working a hybrid model, being in the office at least one day per week, and working from home other days. This model might move to 2-3 days per week in the office in the near future. This position includes a combination of in person attendance and remote work, that may change over time. For our employees, we will provide a computer, but you must have a consistent internet connection.
Applicants must apply on the City's jobs webite. Here is a link to the job posting:
In addition to the required CISA certification within one year of job start, we value other IS/IT certifications such as CISSP, GIAC, etc.
Experience in government performance, financial, IT, compliance and contract audits
3 or more years of IT auditing experience
Knowledge of information technology areas such as, information security, cloud computing, IT general controls, configuration management, change management, IT operations, data backup and recovery, network controls, etc.,
Knowledge of IT best practices as described in FISCAM, NIST, ISO, PCI-DSS, CJIS, ITIL, etc.,
Practical experience conducting data analysis using software tools such as ACL (Audit Command Language).
Familiarity and experience with GAGAS,
A graduate degree,
Experience with TeamMate or other electronic working papers.
Experience using analytical tools such as Arbutus, ACL, SQL, or Python
Education Requirement: Bachelor’s Degree in Accounting, Business Administration, Finance, Information Systems, Public Administration, Government Analytics, or directly related field.
Experience Requirement: Two (2) years of general senior level professional experience auditing and evaluating information technology business practices and processes to ensure compliance and efficiency.
Education & Experience Equivalency: No substitution of experience for education is permitted. Additional appropriate education may be substituted for experience requirements.
Licensure & Certification: CISA certification or acquire within one year of date of hire. Licenses and certifications must be kept current as a condition of employment.
Additional Salary Information: Position Salary Range - $77,174.00 - $127,337.00
Our hiring range will likely be up to $100,000 depending on years of experience.
About City and County of Denver - Auditor's Office
The Denver Auditor's Office, an independent agency of the City and County of Denver, delivers independent, transparent and professional oversight in order to safeguard the public’s investments in the City and County of Denver. Our in-depth audit reports look at how efficient and effective the city’s services and programs are for the people of Denver and provide recommendations for improvement. Our work is performed on behalf of everyone who cares about the city, including its residents, workers and decision-makers. We provide a dynamic and collaborative work environment, excellent work-life balance, and professional development opportunities for our employees.