• Information Systems Auditor

    Location US-NC-Raleigh
    Posting date 2 weeks ago(2 weeks ago)
    Job ID
    64313
    Category
    Finance
  • Company description

    At Red Hat, we connect an innovative community of customers, partners, and contributors to deliver an open source stack of trusted, high-performing solutions. We offer cloud, Linux, middleware, storage, and virtualization technologies, together with award-winning global customer support, consulting, and implementation services. Red Hat is a rapidly growing company supporting more than 90% of Fortune 500 companies.

    Job summary

    The Red Hat Finance team is looking for an Information Systems Auditor to join us in Raleigh. NC. In this role, you will serve as a critical member of the Internal Audit (IA) team, performing various types of audits, primarily IT-focused, but also including integrated work with operational, compliance, fraud and investigative, and financial elements. You’ll perform extensive research of both internal and external best practices and requirements related to subject of audit or consulting engagements. As an Information Systems Auditor, you will conduct all aspects of the audit process including risk assessment, planning, fieldwork, writing of issues and reports, and follow-up of corrective actions while continuously monitoring risks and taking appropriate actions. You’ll also prepare, write, and organize audit documents and reports in accordance with IA manual, standards, and best practices and special direction from management, develop non-standard audit programs and testing protocols, and conduct ongoing subjective and objective risk assessments of all IT teams and functions to propose risk-based audits and consulting activities to IA management.

    Primary job responsibilities

    • Audit and consult on general IT controls and security over applications, virtual or physical client-server environments, standard and wireless networks, operating systems, databases, software development and implementation, and software licensing
    • Audit and consult on a wide variety of IT systems and processes and provide well-supported recommendations on both governance and technical issues
    • Organize approach to assignments on your own and carry them out in accordance with IA audit manual, standards, and best practices
    • Apply knowledge of various technologies, IT control, and security best practices (including NIST, ITIL, and COBIT) to the assigned projects and audits
    • Evaluate the development and acquisition, implementation, and maintenance of systems, software, and utilities to ensure ongoing support of the organization’s IT processing and business requirements and compatibility with the organization’s strategies
    • Evaluate the design, implementation, and monitoring of logical access controls to ensure the integrity, confidentiality, and availability of information assets
    • Evaluate network infrastructure security to ensure integrity, confidentiality, availability and authorized use of the network and the information transmitted
    • Use full range of technical, audit, and interpersonal skills to analyze and determine the viability and reasonableness of IT solutions developed by business teams across the company
    • Consult with customers in development of process improvements and compliance-oriented changes in IT processes
    • Monitor implementation of new systems or procedures; provide consultation related to new system or unprecedented cases
    • Collaborate with operational and financial audit associates to assist on audits, consulting, and special projects requiring IT input

    Required skills

    • Bachelor’s degree in engineering, computer science, management information systems, accounting, or business
    • 3+ years of internal or external IT auditing experience
    • Understanding of best practices for information security and data privacy
    • Understanding of regulatory standards like PCI, FISMA, NIST 800-53, NIST CSF, and SOX
    • Knowledge of and experience with best practices and standards like ITIL, COBIT, ISO 27001
    • CISA, CISSP, or CIA


    Red Hat is proud to be an equal opportunity workplace and an affirmative action employer. We review applications for employment without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, ancestry, citizenship, age, uniformed services, genetic information, physical or mental disability, medical condition, marital status, or any other basis prohibited by law.


    Red Hat does not seek or accept unsolicited resumes or CVs from recruitment agencies. We are not responsible for, and will not pay, any fees, commissions, or any other payment related to unsolicited resumes or CVs except as required in a written contract between Red Hat and the recruitment agency or party requesting payment of a fee.

     

    Interested in this job?

    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed