Information System Auditor

Requisition 38209: B3 - Information Systems Auditor 

 

A resume helps you stand out to hiring managers and recruiters; your resume communicates your experience and your brand. While it is not required, we encourage you to include an up-to-date resume along with a  job application to give you the best opportunity to be considered. A complete resume helps us to better understand your unique  background, relevant experiences, and passions. We look forward to learning about you.

 

 

Primary Purpose:

The information systems auditor provides independent assessments of the control environment over technology implementations and operations, business processes, and data through the execution of risk analysis, control evaluation, and innovative audit testing procedures. The information systems audit group focuses on core technology and business operations supporting the corporate strategic plan, regulatory requirements, and SOX internal controls testing. The auditor builds and cultivates effective business relationships while providing independent value-added audit and advisory services. Audit activities include developing and executing risk-based audit programs, identifying recommendations that help mitigate risks and provide continuous improvement in processes and controls, communicating results, and following up on issues reported.

 

Principal Duties:

• Evaluates internal control systems and provides solutions to problems by furnishing analyses, appraisals, and recommendations.
• Participates in the performance and reporting of technology, operational, and investigative audit projects.
• Evaluates adherence to internal control policies, industry best practices, and existing governmental regulations.
• Prepares audit planning documents, work papers, and audit reports according to department standards.
• Performs audit procedures including interviews, walk-throughs, data analytics, observation, and reperformance.
• Safeguards assets by monitoring corporate activity.
• Performs SOX internal controls testing.
• Seeks appropriate developmental opportunities and continuing education required to obtain and maintain professional certifications and support departmental goals. 

 

Job Related Experience:

Minimum Level: 1 year

Preferred Level: 3-5 years

 

Education:

Required Level: Bachelor's Degree (BA, BS)

 

Preferred Majors:

Computer Science, Accounting Information Systems, Data Analytics, Internal Auditing, Business Information Technology, Accounting

 

 

Licenses / Certifications:

Required: None listed

One of the following is preferred:

• Certified Information Systems Auditor (CISA)
• Certified Information Systems Security Professional (CISSP)
• Certified Internal Auditor (CIA)

 

Technical Skills:

• Experience with at least one or more technology frameworks: COBIT, NIST CSF, COSO, ITIL
• Experience with one or more of the following SOC 1&2, ISO 27001, PCI DSS, CSF, IT Risk assessment
• Experience with Cybersecurity, Microsoft AD, UNIX, Mainframe, databases, web applications, networking and/or other common technology systems/applications
• Familiarity with system/application development
• Experience with at least one Java, Python, JavaScript, .Net, PowerShell
• Data analytics familiarity (query, population testing, scripting)
• Familiarity with IT infrastructures, networks, or Cybersecurity principals

Skills and Abilities:

• Analyzing Problems
• Risk assessment and analysis
• Communication Skills
• Written Communication
• Time Management
• Agile Learner

 

Career Path:

Predecessor Jobs:

Staff Information Systems Auditor

 

Future Jobs:

• Senior Information Systems Auditor
• Manager Information Systems Audit

 

Work Conditions

Environment: Hybrid

Shift Work: No

On-Call: No Weekend Work: No

Travel Required: 3 - 5 Days per month possible

Company Overview

Since 1827, Norfolk Southern Corporation (NYSE: NSC) and its predecessor companies have safely moved the goods and materials that drive the U.S. economy. Today, it operates a customer-centric and operations-driven freight transportation network. Committed to furthering sustainability, Norfolk Southern helps its customers avoid 15 million tons of yearly carbon emissions by shipping via rail. Its dedicated team members deliver more than 7 million carloads annually, from agriculture to consumer goods, and is the largest rail shipper of auto products and metals in North America. Norfolk Southern also has the most extensive intermodal network in the eastern U.S., serving a majority of the country’s population and manufacturing base, with connections to every major container port on the Atlantic coast as well as the Gulf of Mexico and Great Lakes. Learn more by visiting www.NorfolkSouthern.com.

 

At Norfolk Southern, we believe in celebrating our individuality. By leveraging the unique backgrounds and viewpoints of our employees, we can create a culture of innovation, respect, and inclusion. We know that employees thrive in a workplace where differing viewpoints, ideas, and experiences are freely shared and valued. As such, we encourage all employees to contribute their distinctive skills and capabilities to our organization.

 

Equal employment opportunities are available to all applicants regardless of race, color, religion, age, sex, national origin, disability status, genetic information, veteran status, sexual orientation, and gender identity. Together, we power progress.