IT Auditor (SOX)


Full Time


    • SOX
    • Oracle
    • SAP
    • CISA
    • ISACA
    • CGEIT
    • CIA. finance
    • accounting
    • auditing
    • auditor

    Job Description

    IT Auditor (SOX)
    1+ year (Temp to perm)
    Chicago, IL

    This position is part of the Global Internal Audit Organization and reports into the Global SOX Program Director. The Global SOX Director is responsible for the assessment of internal controls over financial reporting globally for financially significant entities and processes. The SOX organization consists of a team of direct reports in Chicago, as well as assessors in Krakow, Poland that report into a SOX Manager onsite.

    Job Description
    This role will perform audits of IT systems against Sarbanes Oxley (SOX) requirements, to identify control gaps and provide recommendations to mitigate operational, financial, and compliance risk
    Execute the day-to-day activities of IT SOX and security risk assessment engagements
    Analyze IT operations and strategies to identify opportunities for improvement in processes and outcomes and provide technical audit advice relating to systems/operations; systems development and design of controls
    Evaluate the design and effectiveness of information technology controls
    Identify and communicate audit and assessment findings and recommend remediation solutions
    Participate in activities of the Internal Audit Department, including information security audits and risk assessments
    Manage and resolve day-to-day issues related to internal controls with business partners
    Ensure documentation of all processes
    Additional Knowledge/ Leadership Skills:

    Identify risk and controls within processes, and provide risk assessment
    Ability to test IT general controls (ITGCs) with regards to system applications, servers and databases.
    Ability to test system interfaces, automated controls and Information Provided By Entities (IPE;s) (e.g. key reports)
    Experience with performing security administration, configuration control and pre/post system implementation reviews
    Working Experience of SAP and Oracle EBS systems
    Develops and establishes strong working relationships and open communication with key stakeholders
    Accountable for own assignments and holding others accountable for theirs including proactively managing expectations
    Excellent written and oral communications skills
    Ability to understand concepts and terminology in security domains including governance, risk management, architecture, compliance, and operations and be able to express them in a clear and concise manner
    Recognize and deal appropriately with confidential and sensitive information
    At least one certification (achieved or in progress of being achieved), related to IT Risk Management, IT Systems Control, IT Audit or IT Governance is highly desired;

    preferred certifications include: CRISC - Certified in Risk and Information Systems Control from ISACA, CISA - Certified Information Systems Auditor from ISACA, CGEIT - Certified in the Governance of Enterprise IT from ISACA, CIA - Certified Internal Auditor from IIA
    Experience in public accounting is highly desired

    Basic Requirements
    Bachelor's Degree is REQUIRED: in Finance, Accounting, Computer Science and related field
    3+ years of experience