IT Auditor Resume Sample

• Participate in the planning of internal audits by collaborating with IT and business management to develop control walkthrough narratives, the matrix of key controls, testing approach, and schedule.
• Executing audit procedures including leading interviews, requesting, reviewing, and analyzing evidence, and documenting test steps in detailed, well-supported work papers.
• Support audit reporting and issue remediation efforts, including tracking the status of open issues and other IT-related findings.
• Overseeing the SOX, PCI-DSS & SOC 2 compliance program.
• Conducting testing, readiness assessment & gap analysis on PCI-DSS, SOX & SOC 2 annual recertification process.
• Leading interactions with external auditors.
• Manage the enterprise-wide vulnerability program
• Ensure full engagement coordination with auditees and other staff
• Planning and leading collaborative risk-based IT audits and concluding whether risks are appropriately managed through the existence of effective control or other techniques.
• Coordinating and maintaining management’s compliance process controls documentation and review controls regularly to ensure adequate design and identification of key controls for processes that affect the company.
• Supporting stakeholders in determining the appropriate treatment of identified risks and gaps, identifying appropriate action plans for risk remediation.
• Defining and documenting business process responsibilities and ownership of the controls in the GRC tool.
• Conducting security awareness training for new hires.

• Supported the IT Internal Audit Program including control testing, execution, and reporting of results for cyber security review.
• Executed test plans to assess operating effectiveness of control processes pursuant Sarbanes-Oxley (SOX)
• Developed and communicated recommendations to correct control deficiencies, provide ideas for process enhancements, and follow up on audit findings to ensure they are addressed by process and control owners in a timely manner.
• Oversaw and monitored IT Control and Security change programs.
• Interacted effectively with clients, stakeholders, and team members in a wide variety of settings.
• Developed and proposed recommendations for control and efficiency improvements.
• Maintained business relationships with appropriate levels of management to ensure that Audit is aware of changes in business activities and objectives, and a necessary Audit response is developed.