Auditor

Description

Summary of This Role

This position provides an opportunity for a motivated audit professional to contribute to Global Payments’ Audit Services Group while developing core audit and IT skills.

The role supports the execution of testing of IT General Controls for existing and new SOC 1 and SOC 2 reports and IT SOX general controls across the mainframe, cloud, and distributed environments. The position also includes assisting in planning, testing & other project execution, and follow-up activities. This position provides the opportunity for future career advancement, exposure to senior leadership, and some travel opportunities.

Familiarity with common SOC and SOX regulatory frameworks and expectations as well as cloud auditing is preferred.

What Part Will You Play?

• Assist in conducting assurance reviews and audits to evaluate the design and effectiveness of controls supporting the company’s business processes and information systems.
• Assist in the execution of the audit process, including planning, client coordination, fieldwork, data analysis, work paper documentation, and remediation validation, with direction from senior team members.
• Understand business and IT processes to identify risks and evaluate internal controls.
• Document thorough understanding of business processes, including the role of technology in supporting the process. Effectively perform testing of automated business process controls and IT general controls.
• Assess information technology design and operating effectiveness, particularly related to application and infrastructure logical access, change management, and operations, as well as more common information security considerations.
• Assist in evaluating root cause factors, extent of risk, and mitigating/compensating controls for audit testing exceptions.
• Document detailed work papers in a consistent and high-quality manner while executing project tasks in adherence to established timelines.
• Assist the project manager to assess the adequacy of the corrective action(s) taken by management, stakeholders, or process owners to improve governance, risk management, and control issues.
• Effectively communicate audit results, their impact and assist in developing recommendations for corrective actions with the project manager, external audit partners, and/or management.
• Build and develop Audit Services Group’s brand within the company through meaningful relationship building.
• Assist in coordinating audit activities with management, co-source providers and external auditors.
• Enable continuous improvement of the Audit Services Group by identifying and communicating enhancement opportunities to department leadership.
  
  

What Are We Looking For in This Role?

Minimum Qualifications

• 1-3 years of relevant audit and risk management experience.
• Knowledge of auditing principles and practices, and the analysis and reporting of audit information. knowledge of IPPF Standards, IIA best practices, auditing principles and practices, as well as the analysis and reporting of audit information.
• Bachelor’s degree in Accounting, Auditing, Business Management, Information Technology, or other similar degrees.
• Experience and with common internal control frameworks and guidance, including Sarbanes-Oxley, SSAE 18 (SOC 1 and SOC 2, both type 1 and type 2 reports), and 2017 AICPA Trust Services Criteria for a SOC 2.
• CIA, CISA, CISM, CISSP, CCAK, CPA, or other relevant certification(s).
• Big Four audit experience preferred.
• 10-15% travel requirement, including some international travel.
  
  

Preferred Qualifications

• Experience with multiple internal control frameworks, including NIST, Cloud Controls Matrix, AWS Cloud Adoption Framework, COBIT, FFIEC, PCI-DSS, ISO27001, and ITIL
• Big Four or similar firm audit experience.
• Payment Processing, Financial Services industry, Merchant Acquiring, and Consumer and Business Financial Solutions experience.
  
  

What Are Our Desired Skills and Capabilities?

• Audit and/or consulting experience in most of these areas:
• Information technology controls, including access controls, systems development and change management, IT operations, cloud fundamentals, and information and data security
• Payment Processing/Merchant Acquiring industry, transaction processing, and settlement.
• Automated business process controls
• Experience in testing information security controls at the application, operating system and database layers – including logical access, change management, operations, and information security controls considerations.
• Demonstrate project management skills, including: prioritizing tasks, balancing, workload, anticipating next steps, and adapting to change.
• Ability to execute assigned tasks with little instruction on day-to-day work, generally receiving general instructions on new assignments.
• Assist in tailoring project approaches based on areas of key risks and assist in evaluating audit procedures to maximize the value of each audit project.
• Pursue work with enthusiasm, energy, drive, and team collaboration. Maintain a positive, professional, and team-oriented attitude.
• Establish and build effective relationships. Collaboratively work with management to improve internal controls and processes.
• Knowledge and/or willingness to fully utilize the Microsoft and Google Workspace product suites for conducting meetings, collaboration, email, and other activities as needed. Familiarity with Google Workspace and Microsoft Teams is preferred.
• Knowledge of AuditBoard and familiarity with executing projects within AuditBoard or another Audit software is preferred.