Sr IT Auditor

Overview

We are Lennar
Lennar is one of the nation's leading homebuilders, dedicated to making an impact and creating an extraordinary experience for their Homeowners, Communities, and Associates by building quality homes and providing exceptional customer service, giving back to the communities in which we work and live in, and fostering a culture of opportunity and growth for our Associates throughout their career. Lennar has been recognized as a Fortune 500® company and consistently ranked among the top homebuilders in the United States.

Join a Company that Empowers you to Build your Future

The IT Auditor conducts audits of the information technology control design and effectiveness in accordance with information technology & security, authoritative sources including the Lennar Enterprise Security Office corporate standards;
Sarbanes Oxley (SOX);
Control Objectives for Information and Related Technology (COBIT);
National Institute of Standards and Technology (NIST); and/or International Organization of Standards (ISO). Manages audits, projects, activities, and remediation plans to mitigate information technology and security risks within LTS. Assesses the information technology control environment and recommends enhancements and improvements to control activities, measures, and routines.

• Conducts internal, information technology audits and rigorous control self-testing programs to ensure controls are designed adequately and working effectively to mitigate information technology and security risks within agreed policies, procedures, standards and risk limits.
• Audits, assesses and ascertains that controls and processes are in place to ensure that information technology risks have been adequately managed and in line with business priorities.
• Serves as a subject matter expert on information technology policy, standards and framework and proactively bridges the gap between control requirements, technical issues and business risks.
• Proactively researches changes in the industry, information technology governance and external risk compliance landscape.
• Ensures information technology risk management practices are embedded in the enterprise and that systems and data criticality and sensitivity are defined.
• Constructs corrective action plans for resolution of control weaknesses and provides expert guidance on how to avoid and prevent similar situations in the future.
• Delivers key performance indicators on audit issue and control weakness closure rate. Conduct testing and validation of remediation action plans and enhancements to control routines.
• Engages the Enterprise Security Office as appropriate in support of security related control testing and remediation as warranted.
• Demonstrates effective working relationships with key stakeholders.
• Incorporates business strategy into decision making process; mentors less experienced associates on strategies.
• Takes ownership within area of expertise; provides guidance to others.
• Identifies opportunities to make improvements within their area of responsibility.
• Creates and presents implementation plans approved by senior leadership.
• Prioritizes work based on business drivers; takes ownership of changes in priority.
• Excellent communication skills, both verbal and written.
• Advanced understanding of business and IT strategy / processes in their area of expertise.
• Engages in discussion of complex business topics in assigned area and captures process activities and requirements.
• Understands impact of changes in the business.
• Other job duties as assigned.

• Strong awareness and knowledge of the following areas of information technology: cloud computing and security, governance, service management; and security authoritative sources providing control and control measurement best practices.
• Ability to provide recommended actions toward the design and operation of control measures and routines to ensure compliance with information technology and security standards, polices and applicable regulations.
• Knowledgeable in all aspects of system development lifecycle; influences methodology
• Provides support and guidance to colleagues
• Aligns solutions with IT strategy and standards
• Advanced proficiency in assigned area; building skills in multiple areas
• Analyzes requirements and advises key stakeholders regarding technical solutions and information controls for new or changed processes
• Proposes functional designs, alternatives, and solution approaches to meet specific requirements
• Independently solves complex problems in core technologies; understands interrelationships with other areas
• Provides input and performs full system life cycle management activities including solution configuration; data mapping and definition, test development and execution, and system training
• Leads small projects, ensuring requirements and timelines are met
• Recognizes when and to whom issues should be escalated
• Provides level 3 support functions
• Defines solutions in alignment with IT…