|
|
|
Account/Position No.: 17000/222820 Level 10 Expectations for All Employees East Tennessee State University pursues its mission based upon core values. An employee's job performance must support and exhibit the university's core values:
PEOPLE
come first, are treated with dignity and respect, and are encouraged to achieve
their full potential; Function of Position Responsible to the Director for assisting in audit performance of all phases of university operations in accordance with acceptable audit standards; assisting with financial, operational and compliance audits; and performing other related duties as assigned. Essential Functions - Performs annual information technology risk assessment; proposes and prioritizes audits based on risk. - Plans, performs and documents information technology audits which evaluate control environment, internal control, security and data integrity. - Consults with functional departments regarding appropriate controls for their information systems. - Assesses information system application development, implementation and processing risks. - Identifies information systems development, implementation and operation control concepts and assesses exposures resulting from ineffective or missing control practices. - Identifies, assesses and develops solutions for internal control, security and data integrity issues. - Determines compliance with university policies and procedures. - Prepares recommendations and writes final audit report. - Develops control self-assessment tools and surveys to obtain useful audit information. - Represents department on university committees related to information technology areas. - Assists audit staff with audits of automated business systems. - Reviews, recommends and maintains state-of-the-art automated auditing tools. - Interacts effectively with a wide variety of people. - Evaluates overall audit results, weighing relevancy, accuracy and perspective of conclusions against the accumulated audit evidence both for individual technology processes as well as for the technology application as a whole. - Determines scope of audit coverage and develops audit programs and internal control questionnaires to accomplish objectives of audit.
Secondary Functions - Schedules information systems audits. - Makes recommendations for improving audit practices. - Maintains currency on technological advancements through self-study, and/or attending professional development training. - Reviews draft audit reports for accuracy and improvement. - Performs other related duties as assigned.
Knowledge and Abilities - Knowledge of information systems auditing standards. - Knowledge of generally accepted accounting practices and principles. - Knowledge of basic audit standards, procedures and techniques required to perform audits. - Knowledge of computer-based information systems. - Knowledge of university and Tennessee Board of Regents policies, procedures and guidelines. - Ability to communicate clearly and effectively. - Ability to effectively audit in a computer environment. - Ability to operate standard office equipment and personal computers using spreadsheet and word processing applications. - Ability to comprehend and interpret policies, procedures, laws, regulations and guidelines. - Ability to analyze complex information system data.
Supervision Given and Received Performs under general supervision. Determines own methods of performing assignments work.
Minimum Qualifications Bachelor's degree in computer information systems, accounting or related field required; two years IT auditing experience desired; experience in higher education setting, particularly in a Banner Information System environment, is a plus; and possession of or progression toward CISA, CIA or CPA is preferred. Qualified candidates must be adept at data extraction; report generation; and possess strong communication (oral and written), analytical and computer skills. |