JOB SUMMARY: Participates in information technology (IT) related audit assignments from planning to reporting. Assists audit lead in determining audit scope. Responsible for completing fieldwork in a timely manner.
RELATIONSHIP: Reports to Audit AVP/Director (Lead)
JOB RESPONSIBILITIES: Participates in IT reviews that focus on assessing risks in a complex IT environment. Technologies areas include mainframe, distributed, database, in-house developed applications, ERP applications, and network infrastructure technology.
Participates in reviews of complex general IT and application control reviews as a part of operational assessments. May also lead portions of the reviews of less complex controls. Specialist will be expected to work collaboratively with the operational audit lead to identify key risks and the controls in place to mitigate those risks.
Develops draft audit findings through identifying and gathering support for potential issues, as well as recommending value added solutions.
Participates in the IT risk assessment process in support of developing the audit plan.
Uses audit tools, such as ACL, to assist other team members with the extraction and analysis of data used in support of operational assessments.
Maintains strong technical knowledge in the areas of information security, auditing, industry, and company priorities.
JOB REQUIREMENTS: Education: A bachelor's or master's degree in computer science, information systems, engineering, business, accounting, finance, or a related discipline.
Licenses/Registration: Obtained or working towards CISA, CISSP, PMP or ITIL certification
Experience: Three to six+ years of IT auditing experience and/or equivalent technical experience.
Working knowledge of IT Audit risk assessment techniques as well as IT controls.
Working knowledge of information technology best practices and control frameworks, including, but not limited to ITIL, COBIT, ISO/IEC.
Understanding of various operating system platforms including Windows 200X, UNIX, OS/400, etc.
Understanding of relational database security concepts and platforms, including Oracle, Microsoft SQL Server and DB2.
Understanding of enterprise network and systems architecture concepts and technologies, including but not limited to enterprise directory, enterprise integration architecture, and identity & access management.
Understanding of SDLC and generally accepted IT project management methodologies and approaches.
Understanding of managed service risk and control concepts for 'cloud'-based application services, hosted infrastructure and outsourcing services.
Understanding of information security/protection concepts.
Experience with business process mapping and controls identification, design and implementation.
Must possess decision-making skills for problem identification and solution recommendation.
Must have strong verbal and written communication skills.
Must have negotiation skills.
Must have ability to prioritize and execute various responsibilities in dynamic environment.
Must have analytical skills to assess risk and evaluate a variety of operational, financial, and systems controls and processes.
Must have data analytic skills and proven knowledge in related software.
Values: Regularly and consistently demonstrates the Nationwide Values and Guiding Behaviors.
JOB CONDITIONS: Overtime Eligibility: Not Eligible (Exempt). Working Conditions: Normal working conditions. ADA: The above statements cover what are generally believed to be principal and essential functions of this job. Specific circumstances may allow or require some people assigned to the job to perform a somewhat different combination of duties.
Staffing Exceptions to the above minimum job requirements must be approved by the: Chief Audit Executive and HR Officer.
Job Evaluation Activity: June 2011 MB/MB Job Function/Family: AUD/AUDT
Imagine a place where you do meaningful work every day. Where the effort you put in is acknowledged and rewarded. Where your sense of purpose is discovered and fostered. Where you can be your very best self. You’ve found that place in Nationwide. We are America’s most diversified financial services organization. We’re trusted advisers for our members, offering solutions like home and auto insur...ance, life insurance, retirement savings tools such as annuities and mutual funds as well as business insurance, pet insurance and identify theft protection. Join something great, where you can make a difference!