IT Auditor

We are seeking a highly skilled IT Auditor to join our team at the New York State government. As an IT Auditor, you will be responsible for conducting IT-related audits and examinations to determine the compliance of agencies, authorities, municipalities, and schools.

• Perform IT-related audits and examinations to determine compliance with IT security requirements and industry standards.
• Conduct research and develop proposals recommending topics for future specialized IT audits, projects, audit tools, publications, and/or training.
• Develop and perform tests of IT controls to determine whether they have been placed in operation and are operating effectively.
• Analyze and evaluate the adequacy of auditee's cybersecurity governance, IT policies, and procedures, and internal controls.
• Evaluate data, information systems, and procedures relating to IT audit/special project areas for compliance with applicable laws, rules, and regulations.
• Participate in and/or conduct interviews with auditees and perform walk-throughs to assist in the evaluation of information system controls.
• Write and/or assist audit teams with writing preliminary audit findings, discussion documents, draft reports, and/or special project documents.

• Seven years of IT auditing experience, with a focus on IT security and compliance.
• Strong knowledge of IT security requirements and industry standards.
• Excellent research and analytical skills.
• Ability to communicate complex technical information to non-technical stakeholders.
• Strong written and verbal communication skills.

• Master's degree in a related field, such as computer science or information systems.
• Professional certifications, such as CISSP or CISM.
• Experience with IT auditing tools, such as Nmap, Nessus, and AppScan.