IT Auditor I

Job Title: IT Auditor I (GRC Analyst I)

FLSA Status: Exempt

Job Family: Information Technology

Department: IT - Information Security

Location: Corporate Office (Fort Wayne IN)

JOB SUMMARY
Assist in executing governance, risk, and compliance activities, including internal IT audits, policy
reviews, and collaboration with IT Management to ensure effective controls and regulatory compliance.

POSITION ESSENTIAL FUNCTIONS AND RESPONSIBILITIES
To perform this job successfully, an individual must be able to perform each essential duty satisfactorily.
Reasonable accommodations may be made to enable individuals with disabilities to perform the essential
functions.

• Learn and participate in the risk and control consulting for IT and business departments with
  understanding and fulfilling their responsibilities related to IT governance, risk, and compliance.
• Assist with assigned tasks from the IT Audit Plan as directed by team lead and management.
• Assist with the policy update and review process to ensure policies comply with industry
  standards and corporate needs.
• Gather assigned risk metrics for the controls framework to be reported to Senior Management,
  create necessary documentation.
• Perform compliance activities with Legal and Compliance departments as directed by the team
  lead and management.
• Perform assigned vendor risk management activities.
• Learn the process for using the risk register for cyber risks affecting the business and participate
  in the analysis and documentation processes.
• Follow the company’s ERM approach to evaluating risks and ensure the organization’s risk
  posture is within the risk tolerance limits.
• Assist with external audit activities assigned by team lead and management.
• Complete other projects as assigned.

KNOWLEDGE, SKILLS, AND ABILITIES
The requirements listed below are representative of the knowledge, skills, and/or abilities required to perform
each essential duty satisfactorily. Reasonable accommodations may be made to enable individuals with
disabilities to perform the essential functions.

• Must possess strong written, verbal, and presentation skills.
• Self-motivated with strong interpersonal, communication and analytical skills.
• Must have effective project management capabilities.
• Understanding of financial audit principles and the Sarbanes-Oxley Act or Model Audit Rule Act.
• Strong desire for continuous learning regarding privacy and security regulations and frameworks.
• Effectively interface with external contacts, Brotherhood employees, managers, and department
  staff members.

EDUCATION AND/OR EXPERIENCE
List Degree Requirement, Years' Experience, and Certifications

• Bachelor's degree, preferably in IT, business administration, or accounting desired.
• At least one year of external and/or internal information technology, auditing or GRC experience
  is desired.
• Progression towards Certified Information Systems Auditor (CISA) and/or Chartered Property and
  Casualty Underwriter (CPCU) designation is desired.

Terms and Conditions

This description is intended to describe the general content of and requirements for the
performance of this position. It is not to be construed as an exhaustive statement of duties,
responsibilities, or requirements.

Because the company’s niche is the church and related ministries market, and because effective
service requires a thorough understanding of this market, persons in this position must be
familiar with church operations and must conduct themselves in a manner that will neither
alienate nor offend persons within this target niche.

Brotherhood Mutual Insurance Company reserves the right to modify, interpret, or apply this
position description in any way the company desires. This job description in no way implies that
these are the only duties, including essential duties, to be performed by the employee occupying
this position. This position description is not an employment contract, implied or otherwise. The
employment relationship remains “at-will”.