IT Risk and Compliance Professional

Title: IT Risk and Compliance Professional

Location: Washington, DC

Duration: 6+ Months

Description

The IT risk and compliance or IT audit professional will support Client's IT Risk & Compliance team in its efforts to establish an ongoing monitoring program over its information technology general controls (ITGCs) pervasive to our financial reporting objectives. Responsibilities include:

• Executing test plans to evaluate the design and operating effectiveness of ITGCs
• Evaluating test results to identify control gaps and control improvement opportunities
• Perform monitoring activities to ensure that established controls continue to operate effectively over time
• Assist with assessing risks and recommending control improvements
• Prepare lead sheets, maintain audit documentation and working papers to support the conclusion reached
• Draft findings and communicate recommendations

Requirements

• Bachelor's degree in accounting, accounting information systems or computer science.
• 5 or more years of IT internal/external audit experience (internal audit or risk management experience with a public company is preferable)
• CISA certification
  • Experience performing integrated audits
  • Familiarity with the risk-based audit approach
  • Familiarity with industry frameworks (e.g. COSO, COBIT, NIST, etc.), best practices and methodologies
• Proven interpersonal skills
• Demonstrated ability to execute and deliver under challenging circumstances
• Excellent communication skills – written and oral
• Strong hands-on experience with Sarbanes Oxley (SOX) compliance
• Strong ITGC testing experience