• At least 12 years of professional work experience required, including having a minimum of 7 years demonstrated expertise in the specialized field of IT auditing including, IT governance, general controls, project management and infrastructure management; software development lifecycle, ERP audits, application security, emerging information security and cybersecurity risk, cloud architecture and controls related to applications hosted in the cloud, data lifecycle management, data privacy, disaster recovery and business resumption, and IT infrastructure including databases, networks, and operating systems and other technology risks.
• Bachelor’s degree in Accounting, Information Technology, or Management Information Systems, or other closely related degree, and at least two of the following (or an equivalent) Professional certifications: Certified Internal Auditor (CIA), Certified information System Auditor (CISA), Certified Public Accountant (CPA), or Certified in Risk and Information Systems Control (CRISC).
• Experience with Oracle or other leading ERP system
• Expertise in auditing concepts, approaches, tools and techniques; risks and controls; IT and Security concepts, standards, frameworks and best practices.
• Experience leading end-to-end IT and Information Security (IS) related engagements and serving as a primary liaison for Internal Audit when dealing with external auditors and regulatory agencies on IT and IS-related audit activities.
• Possess professional expertise, as well as strong analytical and technical skills to evaluate highly complex and diverse IT systems while maintaining the ability to understand and relate to the risks to the organization's overall enterprise risk profile.
• Willingness to develop an understanding of Jacob’s strategic initiatives, policies and procedures (including operating systems, networks and application processing environments and information security issues), as well as industry “best-practices” and emerging trends of the IT and Security control environments in order to assess how these may impact Internal Audit’s IT and Security-related audit activities.
• Strong verbal and written communication skills with a demonstrated ability to articulate effectively and professionally.
• Must be a detail oriented and well-organized team player, with demonstrated leadership ability, the capacity to multi-task and prioritize and a willingness to collaborate at all levels of organizations.
• Knowledge of leading internal control and risk management practices and standards and the ability to perform detailed risk assessments. •
• Ability to facilitate a work environment that fosters and supports ethical decision-making and actions by motivating, promoting and modeling ethical behavior, as well as executing job responsibilities in accordance with Jacob’s core values, ethics, and policies and procedures. •
Ideally, you’ll also have:
• Significant professional experience and background with the Big 4.
• Strong proficiency in the Microsoft Office Suite of products (especially Word, Excel, PowerPoint).
• Superior knowledge of IIA Standards and other global regulatory requirements.
• Experience planning, executing, and reporting on IT and Security-related audit projects, including preparing written audit deliverables and conducting readouts with appropriate management and senior executives.
• Knowledge of process flow mapping, design and documentation of business process and general information technology controls, controls testing, evaluation of control deficiencies, and remediation plans.
• Ability to critically think through complex problems, determine proper processes, and derive conclusions.
• Willingness to assist in the acquisition and maintenance of audit tools for Internal Audit and use of automation, as well as application of new technologies and data analytics.
