Folsom, CA, US
Under the general direction of the Director, Internal Audit, plans and executes internal audits of information technology areas and supporting infrastructures. These audits include, but are not limited to, testing internal controls, evaluating processes against applicable regulations, company policies, procedures and accepted professional standards and industry best practices. Prepares comprehensive well-written audit reports summarizing the audit scope, results of test work, findings and recommended corrective actions. Supports other internal audit staff with testing the technical components of operational reviews. Performs follow-up reviews on items identified in previously issued audits to ensure corrective actions have been implemented.
What's In it for You
Our purpose is to lead the way to tomorrow's energy network. Make a difference and impact millions of people who depend on electricity in their everyday lives.
You get to work on interesting and challenging assignments that will help grow your skill set.
You will work in an extremely collaborative environment inside our LEED certified Folsom, California campus.
You will be challenged, be a part of a winning team, and your contributions will be rewarded and recognized.
What You Will Be Doing
Participates in the development of the annual internal audit risk assessment and audit plan.
Lead, prepare and perform assigned audits: For each assigned audit, develop an audit kickoff memorandum; prepare an engagement planning memo that defines the preliminary audit objectives, scope and key risks; develop a risk and control matrix that defines the controls that appear to be in place to mitigate the risks and audit programs that define audit procedures that will be performed to test the controls; develop engagement working papers that provide clear evidence and support for audit conclusions reached, and prepare a well-written audit report that provides an overview of the area audited and clearly summarizes the results of the audit.
Executes audit test work, which may include utilizing data analysis software to test automated processes.
Conducts follow-up audits to ensure audit recommendations have been implemented and prepares memos summarizing the results of activities.
Performs special reviews and investigations as requested by ISO Executive Management and the Audit Committee.
Provides consulting services, as requested, to assist management in meeting its objectives while maintaining independence and objectivity. Supports business units in identifying and evaluating process controls and advocates for sound process controls.
Adheres to the corporate records management policies, procedures and guidelines, including the approved records retention schedule. Maintains records using approved corporate tools, and stays abreast with required training.
Continually evaluates and enhances the internal audit framework and processes.
Level of Education and Discipline
Bachelor's degree (BA, BS) in Information Technology, Management Information Systems, Accounting or related field or equivalent education, training and experience.
Amount of Experience
Six or more years of related experience.
Certified Information Systems Auditor (CISA) or Certified Information Security Manager (CISM) required. Certified Internal Auditor (CIA) designation preferred.
Type of Experience
Solid understanding of information technology, security and governance best practices such as NIST, ISO, 27000, ITIL and internal auditing standards promulgated by the Institute of Internal Auditors.
Previous experience conducting audits in technical areas such as application controls, information security, change management, business continuity and incident management.
Hands on experience with data analysis tools such as SAS or ACL and continuous monitoring.
Familiar with the electric industry and ISO processes and activities.
Working knowledge of NERC Critical Infrastructure Protection (CIP) Reliability standards a plus.
Experience in sensitive investigations experience, fraud identification, and problem-solving skills are desired.
Must be able to work effectively in a team environment as leader, facilitator and team member.
Must be able to handle a dynamic and changing work environment, multiple assignments, and work well independently and with others.
Excellent analytical, logical, verbal and written communication skills required.