IT Auditor

2 weeks ago

Alexandria, United States She Recruits, LLC Full time
Job Title: IT Auditor (Hybrid 2-3 days onsite)

Location: Alexandria, VA area

Rate/hr: $45-70/hr

Overview: We are seeking a highly skilled IT Auditor with extensive experience in public sector audit or audit readiness, focusing on IT general and application controls for financially relevant systems associated with internal and external audits. The ideal candidate will possess significant expertise in conducting IT assessments to evaluate controls, execute audit procedures, and ensure compliance with regulatory frameworks such as FISCAM and NIST SP 800-53. Additionally, strong experience in Data Quality Planning is required to maintain the integrity of information systems. The successful candidate will be a collaborative team player with exceptional communication skills, particularly in conveying information assurance and security concepts related to IT general controls, application controls, and system interfaces.

Key Responsibilities:

  1. Develop comprehensive test plans to evaluate IT general controls (ITGCs), IT application controls (ITACs), and Common User Entity Controls (CUECs) for in-scope Army information systems and Service Provider systems/processes.
  2. Conduct Test of Design (ToD) to confirm the adequacy of control documentation for selected systems and identify any control gaps.
  3. Perform Test of Effectiveness (ToE) to validate that controls are operating effectively as intended, identifying any operational deficiencies or control gaps.
  4. Collaborate with system and business process owners to develop remediation plans for controls that fail ToD, ensuring timely resolution of identified gaps.
  5. Develop corrective actions to mitigate control deficiencies and enhance the overall effectiveness of information security controls.
  6. Provide internal audit support to the Assistant Secretary of the Army for Financial Management & Comptroller (ASA(FM&C)), focusing on achieving audit opinions for Army information systems aligned with strategic goals.
  7. Maintain current knowledge of regulatory requirements, industry standards, and best practices related to information security and compliance.
  8. Actively contribute to the development, implementation, and validation of Control Assurance Plans (CAPs) to strengthen information security posture.
Qualifications:
  1. Bachelor's degree in Information Technology, Computer Science, Accounting, Finance, or related field. Advanced degree or professional certifications such as CISA are highly desirable.
  2. Must possess a secret clearance or have had one within the last 2 years
  3. Proven experience in public sector audit or audit readiness, specifically focusing on IT general controls, application controls, and system interfaces for financially relevant systems.
  4. Expertise in conducting IT assessments using frameworks such as FISCAM and NIST SP 800-53 to evaluate controls and execute audit procedures.
  5. Strong understanding of information security principles, regulatory requirements, and compliance frameworks relevant to the public sector.
  6. Significant experience in Data Quality Planning to ensure the accuracy and integrity of information systems.
  7. Excellent written and verbal communication skills, with the ability to articulate complex technical concepts to diverse stakeholders.
  8. Strong analytical and problem-solving abilities, with a keen attention to detail and accuracy.
  9. Demonstrated ability to work effectively in a collaborative team environment and independently manage multiple priorities and deadlines.
Benefits:
  1. 1099 opportunity
  2. Opportunities for professional development and advancement.
  3. Meaningful work contributing to the security and integrity of critical government systems.
  4. Dynamic and collaborative work environment with opportunities for innovation and growth.