Senior Internal Auditor

Summary

Summary/Objective

JERA Americas is looking for a highly motivated, well-rounded Senior IT Internal Auditor to assist with executing the responsibilities of the Internal Audit Function. This position will assist leading and conducting IT internal audits across various parts of the organization and evaluating and testing ITGC controls.  This role will also serve as a trusted advisor to assist process owners mitigate risks.   A successful candidate will have excellent verbal and written skills, proven problem solving and project management skills, and the ability to ensure projects are completed while staying flexible in a dynamic environment.

Essential Functions

Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

• Lead audit projects, which includes planning and executing audits, ensuring compliance with deadlines, budgets, and scope of the project.
• Prepare detailed audit reports summarizing findings, risks, and recommendations.

• Proactively interact with all levels of management to gather information, resolve problems, and make practical recommendations for process and control improvements.

• Understand company operations, goals, and associated risks.
• Evaluate the adequacy and effectiveness of internal controls and ITGC controls in various organizational processes and systems including SAP environments.
• Assess compliance with statutory requirements, industry regulations, and organizational policies.
• Develop and review process documentation and flowcharts to ensure they accurately reflect business processes.

• Maintain a thorough understanding of IIA and ISACA professional auditing standards and best practice audit procedures and techniques.

Position Description

• Assist department with management of AuditBoard, data analytics and AI initiatives, department SharePoint and system access.
• Stays current on emerging technologies, cyber risk, and SAP developments impacting control environments
• Other duties as assigned

Minimum Requirements

• Must have extensive knowledge of IT general controls, cyber security, IT operations and governance and some knowledge or experience with data privacy compliance.
• Proficiency in Sarbanes-Oxley compliance, advanced security concepts, emerging technologies, system implementations and project management.
• Excellent, proven communication skills required, ability to work and communicate effectively with all levels of clients including technical and non-technical clients, as well as work with teams cross-functionally.
• Robust qualitative skills, including demonstrated ability to write audit reports with minimal rework, proven ability to handle confidential and sensitive matters, capability to handle multiple assignments, meet deadlines and work under pressure in a fast-paced environment.
• Strong analytical skills and ability to problem solve and consider / develop alternative solutions.
• Motivated to work independently and complete responsibilities with little supervision yet work well and promote team-oriented culture.
• Highly proficient with Microsoft Office applications, audit management systems and other auditing and data analytics tools.

Position Description Continued

Preferred Qualifications

• CISA and/or CISSP strongly preferred, CIA, CPA

• Certification relative to the practice of IT security or auditing in one or more of the followings is preferred: CISA, CISSP, CISM.
• Experience working within a NERC CIP, PCI, NIST, COBIT, ITIL and / or other leading business and IT controls frameworks.
• Demonstrable hands-on skills or knowledge for various technology areas such as key Information Security Topics (Identity and Access Management, Authentication Services, DevSecOps, Encryption etc.), Operating Systems (UNIX/Linux, Windows), Cloud Technologies (AWS, Azure, Google Cloud, etc.), Networking Technologies (Software Defined Networking, Firewalls, etc.), Database Systems (Oracle, SQL Server, etc.), Data Analytics technologies (PowerBI, Alteryx, Tableau, etc.), and Infrastructure (servers, containers etc.).
• Experience in application development, IT project management, system and database administration, web application design and development preferred.
• Experience working within a COSO / risk-based framework preferred.
• Ability to manage an AuditBoard environment preferred.
• Working knowledge of PowerBI utilization preferred.

• Data analytics experience with tools such as MS, Alteryx, other similar tools

• Experience testing Application, Key Report, and Interface controls

• Experience with auditing energy trading, hedging, and derivatives strongly preferred
• Previous experience in continuous monitoring
• Previous experience utilizing data analytics to support audit work
• International audit experience

Qualifications

Required Education and Experience

• Bachelor’s degree required, with a focus in information systems or computer science preferred, and six or more years of IT Audit or relevant experience.

• IT Audits: System Implementation Reviews, Change Mgmt, System Access, Segregation of Duties,  Disaster Recovery, Cyber Security in various systems including SAP.
• 5+ years of IT audit experience, with at least 2+ years of hands-on SAP audit exposure.
• Strong knowledge of ITGCs, application controls, and SAP security concepts (e.g., roles, authorizations, basis administration).
• Data analytics experience with commons tools

Qualifications Continued

Additional Qualifications Considered

• Experience implementing audit management software is a plus
• Bilingual English/Japanese is a plus

JERA Americas does not accept unsolicited resumes from third party recruiters or employment agencies. In the absence of an executed Recruitment Services Agreement, JERA Americas shall have no obligation to pay any referral compensation or recruiter fee.