Execute risk-based IT audit engagements in accordance with the approved Internal Audit Plan, ensuring adequate coverage of assigned high-risk systems, processes, and technology areas.
Perform assessments of IT General Controls (ITGCs), logical access controls, privileged access management, change management processes, System Development Life Cycle (SDLC), and IT operations as directed.
Conduct walkthroughs, control design assessments, and operating effectiveness testing, and prepare comprehensive audit documentation and working papers in accordance with professional auditing standards.
Assess compliance with recognized frameworks and standards including ISACA guidelines, ISO 27001, and applicable regulatory requirements, and document findings clearly and objectively.
Evaluate ERP application controls within environments such as Oracle, SAP, or Banner, identifying control gaps and supporting th...