IT Auditor – IT SOX (BHJOB22048_636)

ITmPowered    Oakland, CA
Job Description
IT Auditor – IT SOX 404 – ITmPowered Consulting We are looking for an IT Auditor with BIG 4 experience, an analytical mind and expertise in IT systems, applications and infrastructure. As an IT Auditor, you are not handed a pre-determined work plan. Rather, using a risk-based approach, you plan and execute projects and audit […]

IT Auditor – IT SOX 404 – ITmPowered Consulting

We are looking for an IT Auditor with BIG 4 experience, an analytical mind and expertise in IT systems, applications and infrastructure. As an IT Auditor, you are not handed a pre-determined work plan. Rather, using a risk-based approach, you plan and execute projects and audit engagements that allow you to interact with a number of professionals throughout the company as you learn the inner workings of IT operations. This allows you the opportunity to take ownership of your work products. Requirements for this position also include extensive knowledge of COBIT, the COSO 2013 framework and SEC/PCAOB regulations, as well as the demonstrated ability to design and monitor an effective global risk-based internal control environment.

Roles and Responsibilities:

  • Perform IT SOX Audit consulting engagements across an array of technology applications, systems, and platforms.
  • Perform IT SOX Audit support engaging with customers, scheduling audit kickoffs, scoping memos, Audit meetings and interviews with application owners and IT personnel, ITGC/ITAC Controls Testing, gathering evidentiary artifacts, logs, screenshots, process, procedure documentation, User access reviews, etc.
  • Assist in the SOX 404 scoping and planning which includes assessing financial statement risk and mapping significant locations to key process, systems, and accounts to determine the annual SOX plan.
  • Develop, coordinate, monitor and execute Sarbanes-Oxley IT control testing in coordination with company teams.
  • IT controls evaluation and documentation – Review and assess systems maps, data flows, matrices of business process impacts, complex calculations, key data validation / verification checks, complex application interfaces and determine risk and control implications.
  • Understands Risks and controls around Data flows, input controls, data validity, completeness. SQL, XLS, Pivot Tables.
  • Experience reviewing and assessing systems maps, data flows, complex calculations, key data validation and verification checks, complex application interfaces and determining risk and control implications.
  • Audit effectiveness of Reporting controls, Application Security, Change Control, Security Administration, Application baselines, and Application level controls vs. Business Process controls, and End User computing (EUC) controls.
  • Collaborate with management to develop appropriate action plans and follow up with management on previous audit findings to assure action plans have been completed
  • Participate in establishing efficiencies within the Internal Audit activities
  • Assist others in IT Audit, as required, to prepare for meetings and presentations, data gathering and ad-hoc requests.
  • May also leverage IT Audit Data Analytics using ACL Queries to test control hypotheses and support creation of IT Audit visualizations to help auditees understand risks and control evidence data.
  • Update and document Risk and Control Matrices (RCM’s), document narratives, send document request lists, plan, schedule, and lead interviews and controls walkthroughs, gather evidentiary artifacts,
  • Create Draft Audit Reports, schedule and conduct reviews with auditees and leaders. Contribute to final reports.

Required Education:

Bachelor’s Degree in MIS, Computer Science, Engineering, Accounting, Finance or related discipline

Required Experience:

  • Big 4 IT Audit experience required (Deloitte, KPMG, EY, PWC).
  • 5-7 years in IT Audit (1 year as an external IT Auditor desired)
  • Certified Information Systems Auditor (CISA) is required. Others; CISM, CISSP, CRISC are a plus.
  • SOX – 3+ years Deep IT SOX expertise – IT SOX 404, Key ITGC’s, entity level controls, IT Application Controls (ITAC’s). Solid understanding of Financial Applications processes Order to Cash (OTC), Procure to Pay (PTP), Close the Books / Financial Reporting and how data flows across systems, applications, and platforms.
  • Strong ability to assist with documentation of ITGC and financial process controls to support operational and SOX compliance audits, including performing walk throughs and developing process flow charts.
  • Strong understanding of SOX methodology and associated standards (sections 404, 302, AS5, PCAOB, etc.)
  • Experience with SSAE16/SOC1, SOC2 Type2 or SOC 3 reports a major plus.
  • Minimum 3 years IT audit experience – Auditing IT, OS, Databases, ERP, Web/Cloud Applications.
  • Demonstrated knowledge base related to controlling and securing system platforms (Windows, AD, Unix, Linux), database platforms (Oracle, SQL Server), endpoint platforms, and network infrastructures, ACL is strongly preferred.
  • Demonstrated understanding of internal control frameworks and standards (COBIT, ISO-27001/2, NIST 800-53)
  • Experience logging and tracking IT Audits, documentation, etc. in Audit/GRC tools – Teammate, Archer, Metric Stream.


  • Local Denver resources only. On site only. No remote.
  • No sub- No sponsorship available.

Fri, 16 Aug 2019 23:35:26 GMT

Recent from Blog

The Jobrino blog is written with jobseeker and employers in mind to enable them to realize their full potential. Jobrino blog is your one-stop destination to find new research about the workplace and the latest insights into the employment market.

Top Entry Level Jobs that Pay Well Hiring Now!

Your first entry level job can pay you anywhere between $32,000 to $76,000 according to the data collected from There are many highly paid...

Read more

How to Introduce Yourself at a Job Interview

Most of the candidate practice their introduction and rehearse their presentation many times for perfection. But some requires an improvement in some area. It’s important to pay attention to job interview manners, don’t be ...

Read more

Why Employers Prefer Targeted Job Applications

Job People who enjoy what they do are the people from who companies benefits the most.  In other words, doing your homework to target specific company beforehand, can land you a job, rather than relying on a resume and waiting with crossed fingers. Besides searching ...

Read more

10 Tips on How to Prepare For a Job Interview

In job interviews, you need to convince an interviewer that you have the skills, knowledge, experience and you are fit for the job. There are number of things to do before and after the ...

Read more