• Assist in the performance of various IT Audits and reviews to determine the effectiveness of the internal control environment.


• Review IT policies, guidelines and procedure documents to determine compliance and management controls.


• Analyze existing policies, approval processes and monitoring methods for departmental use.


• Perform Integrated Application Reviews, Pre and Post-Implementation Reviews, General Control Reviews, Physical and Logical Security Reviews, etc.


• Perform all phases of field work to include: risk assessment, program development, testing, controls evaluation and follow-up.


• Perform SOX testing for assigned IT areas.


• Draft and communicate audit findings and recommendations to management.


• Identify gaps and recommend new/revised policies and procedures.


• Review detailed departmental processes and policies noting deficiencies.  


• Work with the Internal Audit Department and External Auditors to minimize risks.


• Receive risk assessments and analyze the effectiveness of the plan, identifying areas for improvement.


• Develop monitoring plan to determine steps to address risks.


• Prioritize issues in risk assessments based on level of institution exposure.


• Receive reports on status of risk monitoring and analyze reported results identifying trends and developing corrective action where appropriate.


• Train IT Teams on the effectiveness and importance of Controls.


• Develop awareness communication and documentation on System Compliance.


• Plan and conduct compliance monitoring reviews including review schedule.


• Verify compliance plans against established policies and procedures and applicable regulations.


• Develop recommendations for corrective action based on findings and work with department management to refine recommendations.


• Follow up on reviews to verify that corrective actions have been implemented.


• Prepare written reports to include developing recommendations for corrective action and present reports and recommendations to Operational Compliance Team and the Compliance Steering Committee.


• Maintain liaison with all levels of administration to coordinate department business, accomplish objectives, and facilitate the resolution of problems and/or risks.

Qualifications: