The Department of Internal Audit is responsible for performing audits and consulting activities on key University risks and critical processes. The Department accomplishes this by creating and maintaining strong relationships with University and Wexner Medical Center personnel and fostering collaboration to help achieve the Universitys goals. The Department is broken down into three teams (University, Health System, and Information Technology). The Information Technology team performs audits at both the University and Wexner Medical Center as well as at the Universitys affiliated entities.
The Senior IS Auditor will perform independent IS audits and multi-disciplinary reviews for the university community (Wexner Medical Center, academic areas, central operations, etc.), identifying risks for the many separate companies that exist under the university umbrella; assists management in effective discharge of responsibilities by performing independent audits and furnishing analyses, appraisals, recommendations, counsel, and information concerning activities reviewed; performs audits in accordance with audit plans and Institute of Internal Auditor Standards; prepares oral/written presentations; discusses observations and recommendations; performs IS audits and multi-disciplinary reviews (i.e. technology, financial, operational, and advisory projects) across the University; obtains, documents, and analyzes evidentiary data as a basis to form an opinion on adequacy of internal controls and compliance with policies, procedures, laws and regulations; attends and participates in oral presentations; prepares written reports; performs follow-up reviews; assists in supervision of staff auditors. The position reports to the Manager, IS Audit, in a unit that enjoys a strong reputation across campus. Professional development opportunities for the selected individual include certifications, training, professional membership, and rewards for continued education. Due to the nature of the work, this role may be performed in a hybrid working environment with a typical schedule of Monday through Friday, regular business hours with few requests to work more than a 40-hour workweek.
Bachelor's Level Degree or equivalent combination of education and experience. Minimum four (4) years information systems audit experience in technology-based tools or methodologies to review various technologies, networks, security systems, software applications, interfaces, authentication processes, etc.; strong analytical and communication skills; experience conducting general controls, application controls and IT security reviews; knowledge of systems development life cycle and project management.
Certification or progress towards certification as a Certified Information Systems Auditor (CISA), Certified Public Accountant (CPA), or Certified Internal Auditor (CIA).
Sub-function: Information Systems Internal Audit
Career Band: Individual Contributor Specialized
Career Level: S3
The Ohio State Universitys internal audit department within the Office of Business and Finance seeks a self-driven, analytical professional who is very tech savvy and has a good understanding of risk to serve as Senior IS Auditor. The Department reports functionally to the University President and the University Board of Trustees.
The successful candidate will bring strong communication and problem-solving skills and an ability to make quality, independent decisions. The Senior IS Auditor presents appropriate business solutions to leadership based on data and must be an effective communicator. This position offers the chance to impact change at the university along with exposure to a wide variety of technology and projects. It includes the ability to build your own risk-based audit programs and determine priorities from a risk perspective and how it impacts the university as whole.
Main Performance Objectives:
Begin to develop relationships with Internal Audit staff and key University and Medical Center information security staff.
Become familiar with the University and Medical Center IT policies and frameworks.
Become familiar with University and Medical Center IT Structure.
Become familiar with Department of Internal Audit processes.
Work with IT Audit team to perform audit testing and develop recommendations based on findings.
Clearly document audit testing and recommendations in accordance with Department standards.
Develop audit risk assessments/work plans for intermediate to complex information technology audits based on University and Medical Center cybersecurity frameworks.
Lead audits and perform all necessary audit testing with minimal supervision.
Facilitate discussions and communicate audit findings with management.
The Ohio State University campus is located in Columbus, the capital city of Ohio. Columbus is the center of a rapidly growing and diverse metropolitan area with a population of over 1.5 million. The area offers a wide range of affordable housing, many cultural and recreational opportunities, excellent schools, and a strong economy based on government as well as service, transportation, and technology industries. Additional information about the Columbus area is available at visit.osu.edu/experience.
The Target Hiring Range for this position is $73,100 to $97,500.
The Ohio State University is a dynamic community of diverse resources, where opportunity thrives and where individuals transform themselves and the world. Founded in 1870, Ohio State is a world-class public research university and the leading comprehensive teaching and research institution in the state of Ohio. With more than 63,000 students (including 57,000 in Columbus), the Wexner Medical Center, 14 colleges, 80 centers and 175 majors, the university offers its students tremendous breadth and depth of opportunity in the liberal arts, the sciences and the professions.