Certified Information Systems Auditor - Spring, TX jobs in United States
cer-icon
Apply on Employer Site
company-logo

Expand Energy · 2 days ago

Certified Information Systems Auditor - Spring, TX

positionSpring, TX
timeFull-time
remoteOnsite
senioritySenior Level
date5+ years exp

Expand Energy is a dynamic, growing company focused on discovering and developing unconventional oil and natural gas assets in the United States. They are seeking a highly skilled Senior Certified Information Systems Auditor to lead and execute complex IT audits, focusing on risk mitigation across vital technology landscapes.

Oil & Energy

Responsibilities

Provides input into the development of the annual risk assessment and provides recommendations on the Annual Audit Plan
Plans and executes audit engagements or other testing relating to SOX, Operational, or other consulting and audit engagements
Serves as 1st or 2nd level reviewer of audit engagements
Prepares timely audit reports for executive management, the Audit Committee and the Board of Directors and act as the primary client liaison within Internal Audit for one or more VPs / division heads
Researches new or technical subjects to support audits and proactively seeks relevant continuing education and training opportunities
Provides feedback on performance of audit assignments, and trains / mentors lower-level auditors as needed
Performs other duties as assigned
Lead and execute comprehensive IT audits, including integrated audits, focusing on general IT controls, application controls, and security across various systems
Develop and execute audit programs tailored to the organization’s transition from legacy platforms, such as SAP ECC, to a modern platform, such as SAP S/4 HANA
Manage and perform Identity and Access Management (IAM) audits, reviewing provisioning, de-provisioning, role management, privileged access, and segregation of duties (SoD) to ensure compliance and security
Conduct pre-implementation and post-implementation consultation and reviews of major software applications to identify control gaps and operational risks before go-live
Analyze and evaluate IT risks within business processes, providing practical recommendations for remediation and control improvement
Prepare detailed, well-written audit reports and present findings to management, clearly articulating risks and their potential impact
Act as a subject matter expert and developer of tools, reports, and automations associated Internal Audit’s needs
Stay current with industry trends, regulatory changes, and emerging technologies, including Artificial Intelligence (AI), to assess potential impact on the organization's control environment
Strong interpersonal skills and a collaborative mindset to work effectively with auditees and management

Qualification

CISAIT auditingSAP S/4HANAIdentityAccess ManagementCloud analytics platformsCybersecurity frameworksAI governanceERP systemsCommunication skillsProject managementCollaboration skills

Required

Active and current Certified Internal Auditor (CIA) certification, Certified Information Systems Auditor (CISA) certification, Certified in Risk and Information Systems Control (CRISC) certification, Certified Information Security Manager (CISM) certification, Certified Information Systems Security Professional (CISSP) certification, required
A minimum of 5 years of progressive experience in IT auditing, internal audit, or risk management
5 - 8 years related work experience
Lead and execute comprehensive IT audits, including integrated audits, focusing on general IT controls, application controls, and security across various systems
Develop and execute audit programs tailored to the organization's transition from legacy platforms, such as SAP ECC, to a modern platform, such as SAP S/4 HANA
Manage and perform Identity and Access Management (IAM) audits, reviewing provisioning, de-provisioning, role management, privileged access, and segregation of duties (SoD) to ensure compliance and security
Conduct pre-implementation and post-implementation consultation and reviews of major software applications to identify control gaps and operational risks before go-live
Analyze and evaluate IT risks within business processes, providing practical recommendations for remediation and control improvement
Prepare detailed, well-written audit reports and present findings to management, clearly articulating risks and their potential impact
Act as a subject matter expert and developer of tools, reports, and automations associated Internal Audit's needs
Stay current with industry trends, regulatory changes, and emerging technologies, including Artificial Intelligence (AI), to assess potential impact on the organization's control environment
Strong interpersonal skills and a collaborative mindset to work effectively with auditees and management

Preferred

Bachelor's degree - from accredited university - Technology, Accounting, Business Administration, IT, Information Systems or related field
Prior experience in the upstream oil and gas (O&G) sector, understanding industry-specific processes and regulatory requirements
Strong working knowledge of Cybersecurity concepts, frameworks (e.g., NIST, ISO 27001), and security controls
Familiarity with risks and controls related to Artificial Intelligence (AI) and its governance
Experience with SAP S/4HANA
Exceptional written and verbal communication skills, including the ability to communicate complex technical issues to a non-technical audience
Proven ability to lead projects, work independently, and manage multiple priorities simultaneously
Comfort and experience in forming relationships with key individuals across the enterprise to better understand their needs and how Internal Audit might help

Company

Expand Energy

twitter
company-logo
Expand Energy is the nation’s largest natural gas producer, powered by dedicated and innovative employees.
people-size1001-5000 employees
web-link
https://www.expandenergy.com

Funding

Current Stage
Late Stage
Company data provided by crunchbase