IT Auditor

ECS is seeking a IT Auditor to work in our Reston, VA office.

Job Description :

ECS is hiring an IT Auditor and Subject Matter Expert to provide IT audit liaison activities and provide advice to a mix of government and contractor officials and conduct IT internal control testing over the business systems used to generate the agency financial statements.

The work will be on site and a government facility in Reston, VA.

Duties and responsibilities :

• Evaluate the design and effectiveness of IT controls across the suite of business systems.
• Conduct tests around financial system controls compliance, IT General Computer Controls and Application Controls, Access Controls and Configuration management controls.
• Review documents, records, reports and methods for accuracy and effectiveness.
• Conduct testing and prepare work-papers, write-ups, and memos.
• Hold preliminary discussions of apparent deficiencies with system owners and external auditor.
• Report audit findings and make recommendations for the correction of unsatisfactory conditions.
• Review corrective action plans identifying findings and provide recommendations.
• Liaise with external auditors and stakeholders during the annual IT audit.
• Educate stakeholder with what to expect and support a successful IT audit.
• Develop thorough and defendable remediation packages for Notices of Findings and Recommendations (NFRs).

Required Skills :

• Eight plus years of relevant experience with a bachelor's degree or six years of relevant experience with a master's degree.
• Current Top Secret (TS) security clearance with eligibility to obtain a TS / SCI.
• One or more of the following certifications : CISA, CISM, CISSP, CRISC.
• Knowledge of OMB A-123 Management's Responsibility over Internal Controls.
• Knowledge of Generally Accepted Government Auditing Standards (GAGAS).
• Exceptional communication skills, both verbal and written.
• Proficiency with Microsoft Office (Word, Excel, PowerPoint).
• Excellent analytical and organizational skills.
• Experience performing FISCAM, NIST, OMB Circular A-123 internal control, audit readiness, SSAE 16, and FISMA security reviews.
• Availability to support 10% local travel.

Desired Skills :

• Current TS / SCI security clearance with current CI Poly or eligibility to obtain a CI Poly.
• Knowledge of Federal Information System Controls Audit Manual (FISCAM).
• Knowledge of Federal Information Security Management Act (FISMA).
• Experience with National Institute of Standards and Technology (NIST) Federal Information Processing Standards (FIPS) and Special Publications (SP).
• OMB A-123 and / or finance background.
• PMP, CGFM, CDFM.
27 days ago