Senior Auditor, IT Audit & Consulting Services

This job carries with it the obligation to uphold the Mission of Lone Star College (LSC) in carrying out the duties of the position. A commitment to positive interpersonal behaviors, professional communication, integrity, leadership, stewardship, respect and accountability to LSC students and employees is essential.

Cultural Beliefs

• One LSC
• Student Focused
• Own It
• Foster Belonging
• Cultivate Community
• Choose Learning

The Chronicle of Higher Education's "Great Colleges to Work For" is designed to recognize colleges that have been successful in creating great workplaces and to further research and understanding of the factors, dynamics and influences that have the most impact on organizational culture at higher education institutions.

Lone Star College has been recognized in multiple categories.

Lone Star College-System Office

Lone Star College offers high-quality, low-cost academic transfer and career training education to 80,000+ students each semester. LSC has been named a 2023 Great Colleges to Work For institution by the Chronicle of Higher Education.

LSC consists of eight colleges, seven centers, eight Workforce Centers of Excellence and Lone Star Corporate College.

Lone Star College-System Office employees are based at one of two System Office locations; The Woodlands and University Park. Both are the site for multiple administrative departments and system-wide training programs.

Location address is 5000 Research Forest Drive, The Woodlands, TX 77381.

PURPOSE AND SCOPE:

The Senior Auditor, IT Audit and Consulting Services is responsible for leading and executing audits focused on information technology (IT) systems, infrastructure, and processes within the College. This role will assess the effectiveness, security, and compliance of IT systems, applications, and data, with a particular focus on risk management, internal controls, and regulatory compliance within the higher education environment. The Senior IT Auditor will also contribute to the design and execution of audits related to IT security, data privacy, and IT governance, providing recommendations to enhance the university's IT control environment. The Senior IT Auditor will also participate in the development of risk-based audit plans and collaborate with other audit staff on cross-functional audits.

ESSENTIAL JOB FUNCTIONS:

1. Lead IT risk assessments to identify emerging risks and areas for improvement in IT systems and controls, and contribute to the development of the annual audit plan.
2. Lead and execute IT audits and consulting/advisory engagements, including audits of IT governance, cybersecurity policies and controls, cloud systems, enterprise applications, data management practices, etc. Evaluate IT controls, identify key risks and gaps, and design effective testing procedures. Work collaboratively with the Office of Technology Services team at a variety of levels to assess technical environments and provide practical, actionable recommendations
3. Promote the use of data analytics and data visualization techniques to evaluate large data sets for trends and anomalies, and perform data-driven continuous reviews. Identify themes, trends, and emerging risks for advancement and communication to senior management
4. Prepare clear, comprehensive, and timely audit reports, outlining observations, risks, and recommendations Communicate audit results to senior management, the IT department, and other stakeholders, ensuring understanding and buy-in for recommendations. Follow up with leadership at a variety of levels on the implementation of management action plans
5. Participate in system implementation reviews, assessing system development life cycle (SDLC) controls and project governance
6. Collaborate with internal audit staff on integrated audits involving IT systems, finance, operations, and compliance functions. Provide IT audit expertise and insight on cross-functional audit projects, ensuring technology-related risks and controls are adequately assessed
7. Stay current with the latest developments in IT auditing, cybersecurity, data privacy, and regulatory changes affecting higher education. Participate in ongoing professional development, including training and certifications related to IT audit, cybersecurity, and emerging technologies
8. Maintain proficiency in audit standards, policies and procedures and remains current with the ever-changing audit profession, including new approaches to evaluate and report on issues related specifically to colleges
9. May oversee and direct the activities of other auditors as assigned, and acts as a resource for colleagues with less experience. Lead and mentor junior auditors, providing guidance on audit processes, risk management, and security controls
10. Work collaboratively with internal and external contacts, including outside vendors and external auditors, utilizing excellent interpersonal and communication skills. Work closely with the Office of Technology Services, CIO, and CISO to align audit efforts with institutional priorities.
11. Responsible for other reasonable related duties as assigned

KNOWLEDGE, SKILLS, AND ABILITIES:

• Strong understanding of IT infrastructure, network security, operating systems, databases, application controls, and cloud computing
• Strong knowledge of IT security and control practices for relevant platforms and systems, generally accepted IT audit standards, statements and practices
• Awareness of emerging cyber threats, security best practices, and incident response procedures
• Skill in project management methodology, business process analysis, mapping, and documentation
• Ability to influence and advocate recommendations to management
• Strong negotiating, advocacy, and communication skills; ability to convey technical information to non-technical audiences
• Advanced knowledge and practice of the governmental accepted auditing standards (GAAS), International Professional Practices Framework, accounting and auditing pronouncements, the Committee of Sponsoring Organization (COSO) internal controls framework, and fraud deterrence guidance
• Strong knowledge of IIA Standards, COBIT, NIST, and IT governance frameworks
• Proficiency in data analytics and business intelligence tools
• Ability to balance detailed analysis with strategic perspective
• Advanced skills in data visualization tools (Power BI, Tableau, IDEA)
• Knowledge of how routine business processes should be integrated with enterprise resource planning (ERP) and administrative system functions, such as PeopleSoft etc.
• Interpersonal skills to achieve desired outcomes with the LSC staff, faculty, and leadership at all levels, as well as with students, vendors, and other external agencies, etc.
• Skill in identifying problems and formulating actionable recommendations for process improvements or for problem resolution
• Ability to display personal initiative and to adapt, handle multiple priorities, and meet deadlines
• Ability to work independently and in a team environment

PHYSICAL ABILITIES:

The work is primarily sedentary. Typically, the employee sits comfortably to do the work. However, there may be some walking; standing; bending; carrying of light items, such as papers, books, or small parts; or driving an automobile. No special physical demands are required to perform the work.

The environment involves everyday risks or discomforts that require normal safety precautions typical of such places as classrooms, offices, meeting and training rooms, and libraries. This requires use of safe work practices with office equipment, avoidance of trips and falls, observance of fire regulations and traffic signals. The work area is lighted, heated, and ventilated.

WORK SCHEDULE AND CONDITIONS:

• Equipment used includes, PC workstation running on a LAN in a Microsoft Windows environment, calculator, phone, and other general office equipment
• Interface with internal and external contacts as needed to carry out the functions of the position
• Work is performed in a climate-controlled office with minimal exposure to safety hazards
• Position will be based at the System Office and will also require travel to LSC campuses

REQUIRED QUALIFICATIONS:

• Bachelor's degree and at least 5 years of experience, or an equivalent combination of education and experience
• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or related field
• Experience must include at least 5 years of IT audit experience (internal or external)
• Certified Information Systems Auditor (CISA)

PREFERRED QUALIFICATIONS:

• MBA or advanced degree
• Experience with internal auditing in a higher education environment
• Certification in one or more of the following: Certified Internal Auditor (CIA), Certified Information Systems Security Professional (CISSP)

Hiring salary range is $85,537-$104,000

Lone Star College provides a hiring salary range for all posted full-time non-faculty positions. Where your salary offer would fall in that range is determined by your related experience and education. Should you receive an offer of employment from Lone Star College, the resume submitted in the application process will be utilized to calculate your salary offer. The information outlined below will provide the Office of Human Resources everything needed to determine an accurate starting salary.

Your resume should provide a complete picture of your work experience. The resume should include the following information for each position listed:

1. Length of time (specific months and years) of employment
2. If the position was full time or part time
3. If the position was paid or unpaid
4. Level of degree completed including date earned.
5. Unofficial transcript for highest earned degree

Additionally, any certifications listed as required or preferred in the Lone Star College job description should be included in the resume submitted.

By joining our top-notch institution, you will enjoy being a part of an organization that offers a supportive, collegial work environment and excellent work/life balance. This includes a full comprehensive and competitive benefits package, a generous number of paid holidays and vacation days, wellness programs, tuition waiver, professional development opportunities and more.

Go to the Job Search page, click on 'My Activities' at the top of the page. Under My Cover Letters and Attachments you will click on 'Add Attachment.' Please be sure to put the Job ID# in the title once you name your file for cover letters only, unless you attached your cover letter with your resume.

If you are applying for an Instructional position (i.e. Faculty, Adjunct Faculty, Instructor), please ensure you include the following to be considered: Resume/CV, Cover Letter, Teaching Philosophy, and unofficial transcripts.

You must limit your file name for any attachment to 40 characters or less.

ALL APPLICANTS MUST APPLY ONLINE ONLY

We will not accept application material received via fax, email, mail, or hand delivered.

Postings for part-time and adjunct positions are active for the academic year. By selecting the option to receive notifications on your profile, you will begin receiving electronic communication regarding new opportunities with Lone Star College (LSC).

If selected for an interview, a recruiter will contact you by phone, or email to schedule an interview.

Lone Star College participates in the E-Verify program, under which Lone Star College provides the federal government with information from each new employee's Form I-9 to confirm that the employee is authorized to work in the United States.

More information on the E-Verify program is available at www.dhs.gov/E-Verify.

Lone Star College is an EEO Employer. All positions are subject to a criminal background check.