Corrective Action, Customer Support/Service, Documentation, External Audit, Information Technology Consulting, Information Technology/Systems Audit, Insurance, Internal Audit, Policy Development, Reporting Skills, Risk Analysis, Security Analysis, Status Reports, Technical Support, Technical Writing, Time Management
Seeking an IT Audit Consultant who will provide audit and compliance support services to assist with preparing for, responding to, and tracking internal and external audits. The resource will also be responsible for coordinating with agency personnel, technical staff, and documentation resources to ensure audit requirements are addressed accurately and timely, as well as:
- Assist with planning, coordinating, and supporting information technology audits.
- Prepare and coordinate audit responses and evidence submissions.
- Assist with development and tracking of: Corrective Action Plans, Plans of Action and Milestones, Safeguard and Security Reports, security assessment responses, audit status reports.
- Track audit findings through remediation and closure.
- Coordinate with business units and technical staff to obtain supporting documentation.
- Identify documentation gaps and work with other staff to facilitate development or revision of policies, standards, procedures, and other governance documentation.
- Review submitted evidence for completeness, consistency, and compliance.
- Monitor remediation activities and provide status reporting to management.
- Assist with implementation and documentation of corrective actions.
- Maintain audit documentation repositories.
- Support periodic compliance assessments and internal reviews.
- Assist with risk assessments and compliance reporting.
Requirements
Skills
| Required/Preferred
| Years
| Candidate Experience
|
Experience with Information security governance.
| Required
| 4+
|
|
IT Audit Processes
| Required
| 4+
|
|
Risk Management
| Required
| 4+
|
|
Control assessments
| Required
| 4+
|
|
NIST Cybersecurity Framework
| Required
| 4+
|
|
NIST SP 800-53
| Required
| 4+
|
|
IRS Publication 1075
| Required
| 4+
|
|
Corrective Action Plants (CAPs)
| Required
| 4+
|
|
Plans of Action and Milestones (POA&Ms)
| Required
| 4+
|
|
Audit evidence collection
| Required
| 4+
|
|
Compliance collection
| Required
| 4+
|
|
Compliance documentation
| Required
| 4+
|
|
Security control implementation
| Required
| 4+
|
|
Experience supporting IRS, SSA, or OSA audits and responses.
| Preferred
|
|
|
CISA, CGRC, CISSP, CRISC, Security+ or equivalent certifications.
| Preferred
|
|
|
Benefits
Benefit Package includes:
Paid Sick Time
Insurance for Medical, Dental, Vision and Life Available
401(k) including Employer Match
HSA, Short-term & Long-term Disability Available
We are an EEO/Veterans/Disabled employer