Are there any IT Auditors in here? I just got offered an entry level IT Auditor position with an oil company. What should I expect from this. Any advice would be helpful thanks fellas.
I have no clue man. But my major is tech mgmt... So it sounds like something I might be doing. That is if I actually get my ass out of this place someday (I am like mega super duper senior gigemtron). Let me know what the deal is.
My ex is an IT Auditor at the same place I work. I'll see if she can type something up and I'll post it for you.
I work as an IT Auditor / Security Consultant for one of the big four. Contact me on AIM or Yahoo messenger, and I can answer any questions you might have. I've spent 1 year at my current client. I'm doing IT General Controls for SOX compliance.
Great the main issue I have is money. I was told to bring in my salary requirements but I have been in the military my entire career. Can you please tell me what kind of mula I should suggest? Here is the job description: Notes from manager--travel to 20% mostly domestic, about 1 international trip per year, should be a team player, willing to help others on the team as needed, have a high level of self motivation and initiative Education / Certifications Four year college degree in Management Information Systems (MIS), accounting, or other business discipline with minimum 24 hours of MIS or computer science coursework. Minimum GPA of 3.0. Masters degree is a plus. Must be willing to work for professional certification (CISA, CISSP, CIA, CPA). Once certification obtained, must be willing to meet continuing education requirements of certifying organizations through training, industry meetings, and ISACA, AICPA, or IIA meetings. Experience (1) Zero to two years IT Auditing experience (preferably in the oil and gas industry). (2) Strong communication (written and verbal) and interpersonal skills required. (3) Ability to work independently or in a team environment. (4) Both U.S. and foreign travel required. Preferred (1) Experience with SAP or Sarbanes-Oxley would be a plus (2) Ability to speak French or Spanish/Portuguese would also be a plus. Duties: Perform (lead or assist) internal IT audits in U.S. and foreign locations. Duties include: developing efficient and innovative audit programs; preparing working papers documenting procedures followed, tests performed, information obtained and conclusions reached; interpreting evidence ensuring policy compliance, procedure adequacy, controls effectiveness and operational efficiency; and considering risk when making recommendations. Demonstrate ability to apply auditing tools and techniques, generally accepted auditing standards, project management techniques, and analytical techniques. Must maintain extensive understanding of multiple computer operating environments, information query tools, IT concepts, relational database design, structured programming techniques, knowledge of information sources and telecommunications concepts. Perform management's testing of Sarbanes Oxley internal controls related to financial reporting assessing the design and operational effectiveness of these controls documenting the procedures and tests performed as well as the conclusions reached. Assist in the quality assurance review of data-conversion and system implementation testing documents ensuring that applicable tests have been performed, all items in the test plan are complete, appropriate approval has been obtained and problems have been documented and resolved. Study and understand business objectives, technical information, work and data flow, and business processes in a short period of time. Gain this detailed knowledge through the use of interviewing and verification skills. Analyze and document multiple computer platforms and other business processes and applications using flowcharting techniques, narratives and financial analysis tools. Assist in the risk rating of business processes and the development of detailed audit objectives and scope for IT audits to ensure that all audits adequately address control issues. Utilize project and time management skills to ensure project goals are completed in the appropriate sequence and time frame. Projects could include: (a) supporting departmental IT requirements, (b) participating on ITS lead projects as a subject matter expert and (c) special assignments, analysis and studies. Develop and maintain effective communication and rapport with customer personnel to ensure cooperation during the examination and implementation of audit recommendations. Provide status reports of progress and findings to audit and IT management on a timely basis. Present recommendations to all levels of customer management in a clear and confident manner. Participate in financial and operational audits to ensure the efficient and effective use of computer information. Provide requested computer information in an accurate and timely basis. So what do you think? Any others please provide input.
With no experience...don't expect less than 50K...most likely 60k. There is no one out there worth a bean. I can easily find you that work.
Unfortunately, I can't really help you too much on the salary. I've been told that industry jobs pay better than working for a big four, in which case I'd say 60-ish is around where I'd peg it. But honestly, I haven't got a clue as to what salary you should be getting. Reading the job description, it looks like a pretty vanilla IT Audit position. IMO, IT Audit is a pretty unique animal. If you've never done it before, there will be something of a learning curve. You'll get the opportunity to learn a little about a lot of systems. I couldn't stand it at first, but once you begin to understand what IT audit means in a macro-sense, things will fit together better, and you might come to enjoy it. I'd suspect that you'll probably spend a very significant portion of your job working on SOX controls. You'll get to learn a lot about the business itself, how different divisions fit together, how IT processes and decisions are made, and how IT supports business processes. In my experience, being good at dealing with people (especially difficult people) is the most important skill you'll need. A lot of IT folks have no respect for IT Audit, and they may treat you badly sometimes. If you have a fragile ego or a short fuse, this is not a good business to be in. All-in-all, I have come to somewhat enjoy IT Audit. It's a unique way to see how the business and IT portions of a business come together, how all of the IT systems work, and meet lots of interesting people.
At first I thought you were an IRS auditor. I was going to tell you to Fck Off, but seeing that I'm not exactly sure what an IT auditor does, I will bid you good luck on your new future. Good luck and God speed on your audits.
