Search Open Positions with KLR Executive Search Group

Search Positions

  • Share this Job

IT Audit Risk Supervisor

Location : Boston, MA
Job Type : Direct
Reference Code : KLR-2019-1118
Compensation : 65000.00 - 80000.00 USD/YEAR
Hours : Full Time
Required Years of Experience : 3+ years
Required Education : Bachelors
Travel : No
Relocation : No
Job Industry : Public Accounting

Job Description :

KLR is one of the fastest growing CPA and business consulting firms in New England.  KLR over 225+ professionals in four offices throughout Massachusetts and Rhode Island.  KLR offers a fantastic company culture and great growth opportunities for their employees.

Due to our continued growth, KLR is currently looking to hire an IT Audit Supervisor, reporting to the Partner of the group, this candidate will be responsible for the following:

The IT Audit  Risk Supervisor will work with large and small companies in various industries. You will develop strong working relationships with clients built on understanding their businesses and challenges.  The IT Audit Supervisor will work on multiple team engagements each year, including several pieces of any particular assignment-not just one part. Working in a mutually respectful team environment helps our consultants perform at their best and integrate their career with their personal life.


IT Audit Supervisors provide quality services to clients by focusing on their IT and security controls. You will use your strong analytical skills to develop quality solutions to meet client requirements.  Those assignments/responsibilities include:


Job Responsibilities

  • Performing technology risk assessments and reviewing, documenting, evaluating and testing general computer controls including access controls, change management, security, backup and operations controls, in a wide range of computing environments (e.g., mid-range, client/server and mainframes), for Service Organization Control (SOC) engagements, internal audit projects, financial audit support and Sarbanes-Oxley 404 assessments.

  • Assess security of client networks, hosts, and applications

  • Reviewing, documenting, evaluating and testing application controls, particularly automated controls on a wide range of software application packages for financial reporting

  • Assisting financial audit and Sarbanes-Oxley compliance teams in the identification of control objectives and the design of control procedures to address those objectives

  • Identifying internal IT controls, assessing their design and operational effectiveness, determining risk exposures and developing remediation plans

  • Communicating findings and recommendations to client personnel

  • Determine technical and business impact of identified security and control issues and provide remediation guidance to clients

  • Measure and report clients' compliance with established industry or government requirements

Required Qualifications :

  • Bachelor's degree or equivalent

  • 3+ years of experience in IT Audit, IT Security, Information Risk Management, IT Governance or other IT Compliance related work. Prior responsibilities should include performing IT risk assessments and controls reviews and recommending, designing and advising on applicable IT controls

  • Expertise in IT internal controls and their applicability with regards to financial reporting and information systems support process

  • Experience in the performance of Service Organization Control (SOC) assessments

  • Technically knowledgeable in cross-platform system security - particularly with regards to operating systems, databases, networking and transactional processing environments

  • Proficiency with a variety of operating systems including Windows, OS400, UNIX and LINUX

  • Proficiency with commercial and open source database management systems (MS-SQL, MySQL)

  • Good understanding of relevant regulations and industry standards (e.g., SSAE 16, 18/SOC , FFIEC, SOX, COSO, COBIT, ITIL, ISO27001, PCI, HIPAA and GLBA) and best practices and methodologies to address these requirements. Ability to apply these requirements to organizational internal control frameworks

  • Professional certifications including Certified Information Systems Auditor® (CISA®), Certified Information Systems Security Professionals® (CISSP®); Certified Public Accountant (CPA), Certified Information Security Manager® (CISM®) and Certified Information Privacy Professional (CIPP)

  • Excellent written and oral communications skills

  • Strong time management and organizational skills

  • Great attitude and strong work ethic

  • Ability to travel when needed




Powered by AkkenCloud