Senior IT Auditor

Summary

The Senior IT Auditor’s primary focus is to provide an independent, objective assurance and consulting activity to add value to the company. The Senior IT Auditor will evaluate and assess information technology systems, processes, and controls to identify control gaps and make recommendations to improve the organization’s operations. In addition, the Senior IT Auditor will determine if the Company’s network of risk management, control, technology, and governance processes are satisfactory and meet the needs of the business as well as regulatory authorities.

The Senior IT Auditor will also be responsible for undertaking a range of internal audit activities from initial planning through the audit report.

The role will follow a hybrid work schedule of 4 days in the office, 1 day remote.

Percentage of Time:

• Perform, under supervision of management, technology risk‑based audits including analyses of solutions to complex problems
• Ensure compliance with established internal control procedures within the IT related functions by examining records, reports, operating practices, and documentation
• Identify gaps in internal controls and recommend risk mitigation measures and cost savings to strengthen internal controls and improve IT processes, infrastructure, and systems
• Prepare audit work papers which includes planning memos, risk assessment matrices and conclusions on test work, etc.
• Prepare and present reports that reflect IT process, system or infrastructure description, process flows, key internal controls, as well as issues, root cause, and remediation
• Ensure audit findings are discussed with management and appropriately tracked through remediation
• Maintain effective relationships with IT management to enhance the audit process
• Effectively monitor own performance to manage work requirements and budget to meet assigned initiatives
• Function as an objective source of independent advice to ensure validity and risk mitigation
• Engage in continuous knowledge development regarding regulations, best practices, tools, techniques, performance standards and the Institute of Internal Auditors’ International Professional Practices Framework (IPPF)

This role does not have supervisory responsibilities.

• Bachelor’s degree from an accredited institution is required
• Preferred certifications: CISA, CISM or CISSP
• Minimum of 3‑5 years of IT audit related experience
• Experience in the Property & Casualty (P&C) insurance industry is a plus
• Applying IT and Cybersecurity control frameworks including COBIT and NIST
• Understanding of finance and operation internal controls and internal audit methodology as well as SOX/MARSOX compliance requirements
• Ability to utilize critical thinking by applying process analysis, business intelligence, and problem‑solving techniques

10% domestic travel is required.

The base pay range is $100-112K. Salary determinations are based on various factors, including but not limited to relevant work experience, skills, certifications and location.

• Healthcare and Retirement Benefits
• Comprehensive medical, dental, and vision coverage
• 401(k) with a generous employer match and profit‑sharing contribution
• Wellness incentive program
• Life and accidental death and dismemberment (AD&D) insurance
• Flexible spending programs
• Short-term and long-term disability plans
• Paid time off program
• Paid charitable leave
• Paid parental leave
• Tuition reimbursement program
• Personal insurance (auto/homeowners) discounts

It is the policy of MSIG USA to provide equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state or local law.

In addition, MSIG USA will provide reasonable accommodations for qualified individuals with disabilities.