IT Auditor
ECS
Reston, VA
Full-time
ECS is seeking a IT Auditor to work in our Reston, VA office.
Job Description :
ECS is hiring an IT Auditor and Subject Matter Expert to provide IT audit liaison activities and provide advice to a mix of government and contractor officials and conduct IT internal control testing over the business systems used to generate the agency financial statements.
The work will be on site and a government facility in Reston, VA.
Duties and responsibilities :
- Evaluate the design and effectiveness of IT controls across the suite of business systems.
- Conduct tests around financial system controls compliance, IT General Computer Controls and Application Controls, Access Controls and Configuration management controls.
- Review documents, records, reports and methods for accuracy and effectiveness.
- Conduct testing and prepare work-papers, write-ups, and memos.
- Hold preliminary discussions of apparent deficiencies with system owners and external auditor.
- Report audit findings and make recommendations for the correction of unsatisfactory conditions.
- Review corrective action plans identifying findings and provide recommendations.
- Liaise with external auditors and stakeholders during the annual IT audit.
- Educate stakeholder with what to expect and support a successful IT audit.
- Develop thorough and defendable remediation packages for Notices of Findings and Recommendations (NFRs).
Required Skills :
- Eight plus years of relevant experience with a bachelor's degree or six years of relevant experience with a master's degree.
- Current Top Secret (TS) security clearance with eligibility to obtain a TS / SCI.
- One or more of the following certifications : CISA, CISM, CISSP, CRISC.
- Knowledge of OMB A-123 Management's Responsibility over Internal Controls.
- Knowledge of Generally Accepted Government Auditing Standards (GAGAS).
- Exceptional communication skills, both verbal and written.
- Proficiency with Microsoft Office (Word, Excel, PowerPoint).
- Excellent analytical and organizational skills.
- Experience performing FISCAM, NIST, OMB Circular A-123 internal control, audit readiness, SSAE 16, and FISMA security reviews.
- Availability to support 10% local travel.
Desired Skills :
- Current TS / SCI security clearance with current CI Poly or eligibility to obtain a CI Poly.
- Knowledge of Federal Information System Controls Audit Manual (FISCAM).
- Knowledge of Federal Information Security Management Act (FISMA).
- Experience with National Institute of Standards and Technology (NIST) Federal Information Processing Standards (FIPS) and Special Publications (SP).
- OMB A-123 and / or finance background.
- PMP, CGFM, CDFM.
27 days ago