Senior IT Auditor
- 📁
- 📅
- DIS0001576 Requisition #
- 📅
- 15 hours ago Post Date
Since 1911, City Colleges of Chicago has been connecting students from across Chicago’s neighborhoods to economic opportunity. By offering a quality education at an unprecedented value, City Colleges provides our students and alumni with a pathway to upward mobility. City Colleges of Chicago is the city’s most accessible higher education engine of socioeconomic mobility and racial equity—empowering its students to take part in building a stronger and more just city. As Illinois’ largest community college system, City Colleges is comprised of seven colleges and five satellite sites across Chicago.
The Internal Audit Department provides independent, objective assurance and consulting services designed to improve CCC operations. Internal Audit helps CCC accomplish its objective by bringing a systematic, disciplined approach to evaluate and improve the effectiveness of governance, risk management, and control processes.
PRIMARY OBJECTIVE
Reporting to the Director of Internal Audit, the Senior IT Auditor is responsible for leading and performing large-scale and/or complex IT internal audits, assessments, and reviews that align with the mission of the District’s Board of Trustees and executive leadership. The Senior IT Auditor leads initiatives to enhance audit efficiency through advanced data analytics, continuous monitoring, and the integration of artificial intelligence (AI) into internal audit processes. This role also plays a key part in identifying emerging IT risks, recommending mitigation strategies, and supporting organizational accountability and performance improvement. Performs related duties as required.
ESSENTIAL DUTIES
· Leads and executes risk-based reviews of IT processes, including but not limited to assessments of IT General Controls, information security practices, system implementation and change management activities, and IT asset management.
· Evaluates the design and operating effectiveness of internal controls and provides timely, practical recommendations to key stakeholders to mitigate identified risks.
· Plans and executes complex internal audit IT projects, including developing audit programs; organizing and maintaining work papers; conducting weekly status updates with process owners; and writing internal audit reports.
· Partners with leadership and other key stakeholders provide consultative guidance on control design, risk mitigation strategies, and audit remediation efforts.
· Writes complex queries to extract data for testing, validation, and analysis based on specific audit requirements.
· Performs continuous improvement reviews utilizing data analytics to identify anomalies, trends, and control gaps.
Serves as the internal lead for the evaluation and implementation of AI tools and techniques to streamline audit processes, improve risk detection, and support predictive analytics in the audit lifecycle.
· Reviews IT audit report responses and recommendations for accuracy and thoroughness.
· Maintains and performs follow up testing on open findings with related process owners to verify corrective actions have been implemented and are functioning as intended.
· Assists in the planning and execution of enterprise-wide risk assessments to support the development of a comprehensive internal audit plan.
· Ensures work complies with professional standards, including the Institute of Internal Auditors (IIA) continuing professional requirements and external audit Government Auditing Standards (GAS) training requirements.
· Stay informed on developments in IT audit practices, cybersecurity threats, cloud computing, privacy laws (e.g., FERPA, HIPAA), and applicable regulatory frameworks (e.g., NIST, ISO, COBIT).
· Adheres to all CCC Policies and Procedures.
· Adheres to CCC Customer Service Excellence standards.
REPORTING RELATIONSHIPS
Reports To Director of Internal Audit
Direct Supervision None
QUALIFICATIONS
· Bachelor's Degree from an accredited college or university required, preferably in Management Information Systems, Computer Science, Networking and Information Security, or a related discipline.
· Minimum of four (4) years of professional experience as an IT Auditor, preferably in higher education, public sector, or a similarly regulated environment.
· Technical or specialized training in accounting/audit procedures is required.
· Designation as a CISA (Certified Information Systems Auditor) or CIA (Certified Internal Auditor) is preferred.
· Experience with internal auditing software and audit management tools.
· Experience using data analytics in audit planning and execution.
· Expert knowledge of internal auditing, internal controls, and enterprise risk management principles within IT and business functions.
· Strong working knowledge of internal control and audit frameworks such as the International Professional Practices Framework (IPPF), National Institute of Standards and Technology (NIST) Framework, and Control Objectives for Information and Related Technologies (COBIT).
· Solid understanding of IT environments, including infrastructure, security and application controls, operating systems, networks, databases, methodology and approaches.
· Knowledge of regulatory and compliance standards applicable to IT environments (e.g., FERPA, HIPAA, PCI-DSS, GDPR).
· Familiarity with artificial intelligence (AI) tools and their application in internal audit processes.
· Proficiency in writing SQL queries to extract and analyze data sets for audit testing and monitoring.
· Strong analytical, investigative, and problem-solving skills.
· Excellent interpersonal, oral, and written communication skills.
· Excellent writing, research, and presentation skills.
· Demonstrated ability to conduct effective audit interviews and communicate audit objectives and findings to stakeholders across all organizational levels.
· Ability to apply internal auditing principles and best practices to real-world scenarios.
· Ability to work independently with minimal supervision while managing multiple priorities.
· Ability to work within a culturally diverse environment.
· Ability to exercise sound judgment, tact, and discretion in handling sensitive or confidential matters.
· Proficiency in the use of Microsoft Office 365 (Excel, Word, PowerPoint, Outlook, Teams).
We are an equal opportunity and affirmative action employer. Chicago residency is required for all full-time employees within 6 months of hire. Thank you for your interest in CCC!