Corporate IT Auditor

PROFILE:

Position Title: Corporate IT Auditor
Department: Corporate Internal Audit
Report to: Audit & Compliance Manager, IT

JOB SUMMARY:

As a trusted advisor, the IT Auditor is responsible for analyzing and assessing ATS’ IT landscape to ensure data, processes, and systems run accurately and efficiently while remaining secure to meet the organization’s objectives.

The role of an IT Auditor involves developing, implementing, testing, and evaluating IT internal controls. You’ll be responsible for conducting IT-related audit engagements and other various operational projects using an established IT auditing standard within the Corporate Internal Audit (IA). IT audit procedures cover areas such as:

1. Backup and Recovery (B&R)
2. Change Management (CM)
3. Cybersecurity (CYB)
4. Business Continuity and Disaster Recovery (DR)
5. Interface (INT)
6. Job Scheduling (JBS)
7. Manage Security (MS)
8. Problem Incident Management (PIM)
9. IT Infrastructure (INF)
10. IT Application Controls (ITACs)

1. Perform IT General Controls (ITGC) and IT Application Controls (ITAC) testing as designed and documented, making the appropriate changes to the program during the audit as required based on new information and identified risks.
2. Prepare audit working papers in accordance with audit standards and internal audit procedures.
3. Perform follow-up procedures to ensure appropriate audit evidence is obtained, validated, and used for testing controls in a timely manner.
4. Write clear, concise, and constructive audit findings based on facts, severity, and risks.
5. Perform root cause analysis to identify causes of control deficiencies and provide relevant and appropriate recommendations.
6. Provide periodic audit status, control testing results, and/or any challenges to meet audit deadlines.
7. Establish and maintain effective working relationships with the Clients/Auditees.
8. Some travel may be required.

1. Minimum 3 years of IT experience including audit experience through the firm (IT audit/advisory) or a publicly traded company.
2. Hold a bachelor’s degree in Business and Accounting, Information Technology, Computer Science or related field.
3. CISA, CPA, CISSP, CIA, CRISC, CDMP, CIMP, CAMS designations (or in progress) is an asset.
4. Knowledge of IT auditing standards and control frameworks such as IIA, COBIT, NIST, CSF, and ISO27001.
5. Intermediate knowledge of internal audit practices, and financial and operational process documentation. Demonstrate ability to evaluate internal controls, effectively execute large portions of an audit independently, analyze and solve complex problems and conduct research.
6. Ability to execute multiple projects at any given time.
7. Strong practical knowledge of audit methodologies, control methodologies and risk mitigation.
8. Strong communication skills with an ability to express ideas clearly, concisely and persuasively both verbally and in writing.
9. A familiarity with ACL software (Audit Command Language) or other data analytics tool and ability to conduct data analysis is an asset.