To be an IT Auditor, it is a must that one have certifications like: CIA (Certified Internal Auditors), CISA (certified information systems auditor) and CISSP (certified information systems security professional) certifications, Certified Public Accountant (CPA), and Certification and Accreditation Professional (CAP).
IT auditors should be experienced with all fields of IT like systems, networks, databases, encryption, etc. as they may have to audit any aspect. They should keep themselves up-to-date so that they are aware of technological changes taking place. This requires ongoing training. They may have to do financial statement audit or internal audits to evaluate that the IT is protecting the assets.
The IT auditor may have to perform any of these as well: technological innovation process audit, innovative comparison audit, technological position audit, systems and applications, information processing facilities, systems development, management of IT and enterprise architecture, client/server, Telecommunications, intranets, and extranets audit.
The career opportunities are numerous as it gives full responsibility to handle the audit portfolio which consists of clients with a high turnover. Clients can either be private or listed companies. This job needs experienced and talented people with a minimum of 2 years' experience or an equivalent degree from CIA, CISA, CISSP, CPA, or CAP.
The average expected salary for an information technology auditor is in the range of $50,000 to $80,000. This increases with experience. The demand for auditors is increasing, with the increase in the number of companies. These auditors can work as either private consultant to the companies or they can also work publicly. If the auditor is working on contracted basis, then once the company approves the work of the auditor, he may get a permanent job.