• Act as the primary point of contact for key IT/ business processes and coordinate with Process Owners to ensure documentation and testing supporting the SOX program is updated on a timely basis
• Proactively update and maintain risk assessments for assigned process areas, assess process design and make recommendations for improvement
• Develop and execute test plans for key internal controls and audit work plans
• Evaluate test exceptions/ control deficiencies and work closely with the business to identify remediation alternatives, compensating controls and areas for improvement
• Assess and understand the risks and contribute to risk management initiatives and scoping exercises for SOX compliance, internal audit
• Participate in discussions with Internal and External Auditors on the adequacy and design of Internal Controls and compensating controls
• Effectively communicate and influence management on the importance of an effective control environment and the role of the SOX team
• Monitor and report on the status of remediation activities, and assist the SOX team in preparation of quarterly status updates
• Actively participate in the annual planning and scoping of the SOX Program
• Perform an annual IT controls risk assessment, scoping and planning

Skills: SOX Compliance, Risk Assessment, Control Testing, Audit Planning, Deficiency Evaluation, Process Improvement, Stakeholder Communication, Remediation Tracking

• Analyze and develop a strategic IT internal audit program and action plan to support the company's goals and objectives related to IT Governance, IT General Control, Application Control, Cybersecurity and new technologies/trends
• Ensure the company standard of internal audit, general control, IT governance and related IT frameworks
• Conduct the audit work on the business process according to the planning step, with an appropriate approach
• Identify the root cause of risk which embedded in each business process that needs to be made aware of by management and ensure that appropriate controls exist to mitigate them
• Conclude and report the audit findings including recommendations for control improvement, to the responsible management
• Follow up on the status of control implementation based on the audit recommendation
• Work in a team that conducts a variety of complex IT internal audits and identifies remedial actions aimed at achieving 100% compliance with all internal and external policies and regulations
• Assess internal DT and program compliance with all imposed DFARS and CMMC requirements to effectively prepare for future external DoD (DCSA, DCMA) and/or internal company audits, and improve overall program and environmental security posture
• Perform assessments of IS environments against related SSPs (System Security Plans)
• Deliver relevant or required training and preparation to program teams and leads, in advance of customer or 3rd party audits
• Coordinate and conduct interviews with pertinent management, lab personnel and other stakeholders throughout the audit process
• Assist in the development of audit findings, identifying root causes, and identifying remedial action that corresponds to compliance goals and objectives
• Issue detailed reports that document audit findings and concisely and accurately convey results and ensuing remedial action

Skills: IT Audit Strategy, Governance Compliance, Risk Identification, Control Evaluation, SOX Assessment, Regulatory Compliance, Root Cause Analysis, Audit Reporting

• Engage with varying layers of leadership to evaluate day-to-day IT processes and translate risks to big picture issues that directly impact the business and CenturyLink’s customers
• Learn to use big data and develop analytics to support audit findings and provide management with meaningful information
• Execute IT audit testing including completion of workpapers, documenting root cause, work performed, summarized test results and conclusion
• Assist with IT audit planning including the development of audit objectives, evaluation of IT processes and controls assessments, assessment of IT risks, and provide input to audit scope
• Assist the operational internal audit teams in evaluating IT-related risks and processes across various areas of the business
• Test the operating effectiveness of SOX IT General Controls and other related controls
• Participates in systems implementation and process improvement projects
• Communicate with internal audit management regarding testing status, audit issues and deadlines
• Follows up with clients to ensure that agreed-upon action plans have been implemented
• Stay current with security technologies, trends, vulnerabilities and threats

Skills: IT Audit Testing, Risk Evaluation, Data Analytics, Audit Planning, Control Assessment, SOX Compliance, Process Improvement, Stakeholder Communication

• Assist audit management, execute internal audits including audit planning, detailed audit procedures and related testing and reporting in accordance with professional and departmental standards
• Focus on IT security, operations, and compliance processes
• Assist with IT Internal Controls over Financial Reporting (ICFR) testing (SOX, MAR, FDICIA)
• Prepare clear, accurate and complete work papers in accordance with department quality standards
• Meet project timelines and deliverable due dates
• Identify audit issues and perform root cause analysis with practical corrective solutions
• Perform follow-up on assigned audit report action plans to ensure that the business partners have completed the agreed-upon action plans
• Participate in special projects undertaken by the department and/or the company

Skills: Audit Execution, IT Security, SOX Testing, Compliance Review, Issue Identification, Root Cause Analysis, Action Plan Tracking, Project Participation

• Develop and maintain strong relationships with internal clients, external auditors, and the team
• Ensure deficiencies are properly supported and recommendations are fully agreed upon by management
• Coach the team to maximize their growth and productivity
• Represent the Internal Audit team across the organization
• Build test plans, coordinate third-party testing, and perform and review testing
• Create and implement procedures, schedules, and training for achieving SOX and Internal Audit objectives and goals
• Assist in the overall execution of the SOX and internal audit plans, results, and reporting for all business segments and provide updates to leadership
• Analyze deficiencies for significance and materiality
• Ensure deficiencies are properly supported, clearly presented and recommendations agreed by management
• Stay in-the-know and help to keep everyone up to date with reporting on performance
• Serve as a changemaker by presenting technical research and implementing processes and procedures within internal audit and across the business
• Research and review current and new regulations, policies, and procedures to remain up-to-date and knowledgeable

Skills: Client Relationship, Team Coaching, SOX Compliance, Audit Execution, Deficiency Analysis, Process Improvement, Regulatory Research, Leadership Reporting

• Plan and conduct audit missions, provide an independent appraisal on the processes and the design and operating effectiveness of internal controls
• Execute audit procedures and document them in IA’s audit software
• Report on the findings and agreed action plans for corrective actions and/or improvements (as part of a team of IA personnel)
• Follow-up audit recommendations to verify that corrective action is undertaken
• Identify ways to leverage technology to ensure effective knowledge management and efficient engagement execution
• Develop, improve, and implement Internal Audit processes, procedures, IT systems, methodologies and working tools for conducting risk management and internal control activities
• Participate in senior management meetings, including the Audit Committee (EIB) / Audit Board (EIF)
• Develop constructive relationships with other directorates and represent the IA department 
• Steer and monitor the activities of external consultants
• Contribute to creating appropriate awareness on the importance of IT risk assessments and controls
• Keep abreast and follow the latest developments in the internal audit function, particularly in the area of IT audit techniques

Skills: Audit Planning, Control Evaluation, Audit Reporting, Risk Management, Process Improvement, Technology Utilization, Stakeholder Engagement, IT Audit Techniques

• IT Audit experience in a top-tier or international public accounting firm 
• Knowledge of Mainframe, AS/400, Distributed (Unix, Windows), Web-based applications, Cloud, LAN/WAN, and basic infrastructure control issues
• Knowledge of generally accepted IT audit standards, statements and practices, and IT security and control practices for relevant platforms and systems
• Understanding of risk, controls, and internal control systems for financial, operational and information technology
• Knowledge of general management information systems terminology, concepts, and practices
• Skill in negotiating issues and resolving problems
• Skill in using a computer with word processing, spreadsheet, and other business software to prepare reports, memos, summaries, and analyses
• Skill in effective verbal and written communications, including active listening skills and skill in presenting findings and recommendations
• Ability to assess the effectiveness of internal controls over key IT risks
• Experience in identifying significant exposures, analyzing transactions and other management information, and detecting changes in key risks and/or control effectiveness
• Evaluating third-party service provider reports and environments
• Skill in developing appropriate recommendations to address exposures
• Skill in project management, issue negotiation and resolution

Qualifications: BS in Computer Science with 7 years of Experience

• Must possess strong organizational and verbal and written communication skills
• Experience in the use of data analytics, visualization and reporting (e.g., Tableau, ACL, Alteryx)
• Ability to think “outside the box” and evaluate processes to identify opportunities for improvement
• Excellent follow-through and attention to detail
• IT audit experience or related experience
• Must have CISA, CIA, CISSP, CISM, CPA, or equivalent professional certification
• Must have leadership ability, have initiative and be resourceful
• Knowledge of word processing, spreadsheets, presentations, and other business software to prepare reports, memos, summaries, and analyses
• Able to establish and maintain harmonious working relationships with co-workers, staff, and external contacts, and to work effectively in a professional team environment
• Should be a team player and a self-starter
• Experience with data analysis tools such as ACL and SQL Server

Qualifications: BS in Data Analytics with 5 years of Experience

• Experience of full-time financial or internal/external auditing through planning audits, conducting audit procedures and preparing audit reports, risk-based auditing experience
• Strong understanding of the requirements of Sarbanes-Oxley Section 404 (Narratives, Risk Matrix, Control Templates, Testing, Certifications, Remediation)
• Good understanding of internal control frameworks (COSO 2013)
• Experience auditing SAP business process controls, SAP GRC exposure
• Excellent oral communication, writing, presentation, and facilitation skills
• Excellent organizational and project management skills
• Ability to develop and maintain and foster outstanding working relationships with process owners and others within the organization
• Strong critical thinking and problem-solving skills, with an attention to detail
• Ability to work as part of a dynamic team working to accomplish corporate objectives and values
• Ability to work with minimal supervision
• Able to prioritize and recognize when to seek input from line managers, while making decisions that could have long-term effects

Qualifications: BS in Information Systems with 6 years of Experience

• Experience in IS/IT audit, information security, and/or compliance
• Familiarity with internal control frameworks, professional audit standards, best practices, security and trust models, and guidelines (e.g., COSO 2013, NIST, COBIT)
• Working knowledge of business management concepts (i.e., objectives, risks, and controls)
• Good understanding of technologies and controls including those related to OS, database, network, and security
• Ability to work effectively across organizational levels (both technical and non-technical)
• Demonstrating strong initiative, mature judgment, professionalism, adaptability, and a customer service mindset
• Must possess a “can-do” attitude with excellent verbal and written communication skills
• Proactive in researching applicable business best practice concepts 
• Solid listening skills and ability to identify gaps in logic, inquisitive and professional skepticism
• Strong planning, organization and time management skills
• Ability to work independently, productively, and follow through on all responsibilities to bring projects to a successful conclusion while meeting all deadlines and commitments
• Working knowledge of some of the following technologies: ERP, Oracle Financials, SAP, Operating Systems, Unix/Linux, Windows, Databases, Oracle DB, SQL

Qualifications: BS in Software Engineering with 7 years of Experience

• Information systems, accounting or sufficient experience in public accounting, internal auditing, or other field that would provide the same basic knowledge
• Must have relevant certification (CISA, CIA, or CPA)
• Prior work experience with Microsoft D365
• Experience with data analytics or robotic process automation tools
• Ability to work independently and within a team
• Ability to use own initiative
• Analytical thinking and attention to detail
• Ability to work effectively on own, lead and as part of a team
• Strong ethical standards and high levels of integrity
• Ability to think objectively and demonstrate sound judgement
• Strong communication skills, both written and verbal
• Must have organization and facilitation skills
• Flexible thinking and the ability to adapt to change
• Ability to influence at all levels within the company
• Ability to conduct an investigation, draw a conclusion and provide recommendations

Qualifications: BS in Cybersecurity with 6 years of Experience

• Experience in IT or Operations internal auditing, Sox ITGC, risk management, IT compliance, IT project management, information security, software development or technology 
• Must have professional certification (IIA, CISA, CISM or equivalent)
• Strong ability to work collaboratively and cooperatively with all employees, irrespective of their status in the organization
• Ability to work on different projects simultaneously
• Ability to translate technology topics and into "business speak" to be understood by a wide range of both technology and business stakeholders
• Results-oriented, able to motivate, influence, and manage diverse teams
• Fluent in English (written and spoken), German
• Familiarity with COSO, COBIT, ISO and ITIL frameworks
• Excellent verbal and written communication skills
• Strong attention to detail and an ability to take ownership of projects
• Highly analytical and objective, with the ability to challenge the status quo
• Strong Project Management experience and ability to meet deadlines

Qualifications: BA in Economics and Finance with 5 years of Experience