Senior Cyber Security Auditor (Audit Hiring Event)

Description

AUDIT HIRING EVENT: APPLY BELOW TO BE CONSIDERED FOR AN ON-SITE INTERVIEW ON EITHER TUESDAY, MARCH 4TH OR WEDNESDAY, MARCH 5TH.

About the Role

The Audit Department is responsible for providing internal auditing services that include reviewing business processes, systems, and operations, as well as examining tenants and contractor records. Reporting to the Inspector General and the Board of Commissioners Audit Committee, the Department's mission is to bring an independent, systematic, and disciplined approach to evaluating and improving the effectiveness of internal control and risk management.

The Audit Department is looking for highly skilled individuals to join their team in support of the mission - to enhance and defend the integrity of the Port Authority's programs and operations. Reporting directly to the Manager the duties of this position are highly confidential and involve the handling of sensitive documentation. The selected candidate is expected to maintain confidentiality and discretion.

• Participate in the planning and performance of specific audits including developing the audit scope and the audit program.
• Conducting general controls reviews, system security audits, application reviews and pre-implementation reviews.
• Performing integrated reviews to evaluate both business applications and process.
• Perform risk assessments to determine the scope of the audit assignment.
• Executing the audit work including the gathering and analysis of required data and information.
• Preparation of workpapers including Teammate+ automated workpaper application and drafting reports summarizing the results of the audit, communicating audit results to auditee management, evaluating results of IS audit and system vulnerability tests and making recommendations for enhancements to procedures, controls, and administrative practices.

• Bachelor's degree in Information Systems, Computer Science or related fields.
• 2 years of transferrable experience in the audit or information technology related field
• Demonstrated ability to exercise good judgement and discretion in handling confidential information.

• General understanding of risk-based auditing techniques, internal control practices, risk assessment or assurance to ensure effectiveness and accountability.
• Demonstrated ability to analyze functions, operations and business processes and identify solutions for improvement.
• Understanding of computer hardware, network, operating systems, and database concepts.
• Familiarity with one or more IT security and control frameworks such as COBIT, IIA GTAG, ISO 27000 and NIST.
• Knowledge of current ERP's applications (SAP, PeopleSoft), operating systems (Windows, Linux), databases (Oracle, MS SQL) and vulnerability scanning tools.
• Proficiency of audit data analytics with tools such as Excel and ACL.
• Thorough understanding of systematic reviews to ensure effectiveness and accountability.
• Demonstrated project management, planning, organization, analytical, technical, and problem-solving skills.
• Demonstrated written and oral communication skills.
• Demonstrated ability to meet deadlines, work independently and prioritize work.
• Ability to interact effectively with internal staff at all levels and external business partners.
• Thorough working knowledge of Microsoft Office Suite applications.
• Professional certifications desirable: CISA, CRISC, CISSP, CISM