Add to collection(s) Add to saved
  1. Business
  2. Management
  3. Human Resource Management

IT Auditor I - The Institute of Internal Auditors

advertisement 
JOB DESCRIPTION
Job Title:
Department:
Reports To:
FLSA Status:
IT Auditor I, GC
Gaming Commission
Senior IT Auditor
Exempt
Prepared by:
Date Prepared:
HR Approval/Date:
J. Milton/K. Zadra
8/25/14
D. Albaugh 9/25/14
SUMMARY
The San Manuel Gaming Commission (SMGC) IT Auditor I role is a critical position to the organization and
requires an individual with the utmost integrity to provide the oversight responsibilities of this position. The IT
Auditor I ensures gaming operation compliance with the Tribal/State Compact, as well as the Federal, State and
Tribal regulations. The IT Auditor I also ensures that all enterprises licensed, or found suitable, are conducted in a
manner that protects the public health, safety, morals, good order and general welfare of the Tribe.
The Information Technology (IT) Auditor I will assist the audit team in defining scope of audits by using a riskbased approach and analyzing information technology risks related to all areas of gaming operations at San
Manuel Indian Bingo & Casino (SMIBC). The position demonstrates professional judgment while executing
reviews of internal control systems including, but not limited to, safeguarding assets, maintaining game and
data integrity, and adherence to federal and state regulations. To help IT and the business optimize their
efficacy and performance, the IT Auditor I must employ a systematic and disciplined approach when assessing
the effectiveness of internal controls. Providing value to our internal customers is paramount, therefore, clear
communications, establishing rapport and building relationships with IT leaders and various departments is a
critical function of this role.
ESSENTIAL DUTIES & RESPONSIBILITIES




Plans and performs comprehensive IT audits using advanced audit methodologies to evaluate potential risk
and assess effectiveness of controls, accuracy of financial records, business processes and efficiency of
operations. Audits include, but are not limited to:
•
Compliance with federal, state, and tribal regulations
•
Physical and logical security
•
Data backup and recovery
•
User access controls
•
Protection of information assets
•
Technology interfaces with gaming machines and data
•
Application controls validation testing
•
Maintaining integrity of gaming systems
•
Database access controls
•
Security assessment of technology projects
•
Special projects as directed by the Senior Audit Manager and Senior IT Auditor
Constructively works with IT and business operations to identify areas for improvement while collectively agreeing
on appropriate corrective actions, facilitating remediation efforts and monitoring progress to ensure that control
weaknesses and inefficiencies are being addressed.
Leads meetings as needed to discuss audit findings with all levels of management.
Prepares clear and concise written and oral reports prepared for internal and external management.
IT Auditor I, GC
Page 1 of 4









Conducts all work in accordance with the International Standards for the Professional Practice of Internal Auditing
(Standards) and Code of Ethics promulgated by the Institute of Internal Auditors.
Monitors multiple technology activities by the IT Department in order to manage and communicate potential risk, as
well as, deviations from policies and procedures.
Leads audit engagements and provides necessary feedback, guidance and coaching as necessary.
Demonstrates appropriate judgment when answering questions and analyzing or providing information.
Prepares organized and accurate workpapers in support of audit work performed and ensures that all
documentation clearly supports the conclusion of each audit objective.
Establishes and maintains effective working relationships with employees, management, auditees, external
auditors and independent agencies representing diverse cultures and backgrounds.
Assists in the training and development of new staff.
Cross trains non-IT Auditors in information technology reviews.
Performs other duties as assigned.
CORE COMPETENCIES









JOB KNOWLEDGE - Demonstrates the necessary management, administrative, professional and/or technical
skills to meet or exceed position expectations. Uses common sense approach to complete tasks and
meeting deadlines. Keeps job knowledge current, is in command of all critical issues that develop day-today on the job. Seeks to increase job knowledge and value to organization.
PRODUCTIVITY – Ability to manage acceptable workloads, volunteers for additional work, prioritizes tasks,
develops good work procedures, manages time well, and handles/integrates new information and/or
procedures well.
COMMUNICATION – Communicates well both verbally and in writing. Creates accurate and punctual reports,
demonstrates good listening skills. Demonstrates behavior that is welcoming, friendly, open and
approachable.
INTERPERSONAL SKILLS – Builds strong individual and team relationships within and outside the
department. Flexible, open minded and demonstrates the ability to build rapport and satisfaction by
handling all situations effectively as they arise.
DEPENDABILITY – Meets commitments, deadlines, and works independently, completes all assignments or
job tasks without management follow up, and accepts accountability for results.
QUALITY SERVICE - Ability to handle internal/external customer questions, concerns and complaints
effectively and communicates positively. Consistently maintains a pleasant, approachable, professional
image.
TEAMWORK/PARTNERING – Contributes to meeting all team deadlines and responsibilities, listens to others
and values opinions, helps team to meet goals, promotes a team atmosphere. Consistently demonstrates
collaboration and cooperation skills and openly supports management in accomplishing department and
business goals.
INITIATIVE – Independently identifies problems and takes independent action to successfully resolve
issues, willingly seeks out new or additional responsibilities, acts on opportunities to improve overall
operations, generates new ideas. Takes advantage of opportunities to learn new skills. Demonstrates the
ability to learn.
ADAPTABILITY/FLEXIBILITY- Adapts to change, is open to new idea, willingly takes on new responsibilities,
handles pressure, and adjust plans to meet departmental/business enterprise needs.
EDUCATION/EXPERIENCE


College degree required, preferably in Information Systems, Computer Science, or Accounting/Finance;
will consider six additional years of work experience as a substitute for degree.
Minimum two years of work experience in IT, Information Security, Audit, Accounting, Fraud, Risk,
Compliance, or other professional investigative or risk-based experience required.
IT Auditor I, GC
Page 2 of 4











The position requires the ability to understand key processes in data flow to monitor IT activities and
ensure compliance is achieved.
Intermediate level experience using the following Microsoft products including, but not limited to,
Outlook, Word, Excel, PowerPoint and SharePoint.
Ability to conduct research and find useful information on the Internet, including the ability to open and
configure standard browsers; use of Boolean searches, hypertext references, and evaluates the
creditability of the source of information.
Working knowledge of Tribal Internal Control Standards.
Ability to use data extraction and data analysis techniques such as ACL, MS Excel, etc. to support audits
and sampling within the department.
Ability to employ a proactive approach to problem solving and overall execution of job responsibilities
required.
Ability to respond to common inquiries or complaints from customers and employees.
Ability to communicate one-on-one and to groups to explain policies and procedures, and to persuade
others to accept or adopt a specific opinion or action.
Ability to effectively present information and/or a convincing argument to executives.
Knowledge of accounting and auditing principles/standards, and familiarity with various computer
systems and applications.
Excellent interpersonal, oral and written communication skills with the ability to communicate to all levels
of management.
CERTIFICATES/LICENSES/REGISTRATIONS




Must obtain and maintain a Class “A” Gaming License issued by the San Manuel Gaming Commission.
Must have a valid Driver’s license with acceptable driving record as defined by the company insurance
carrier.
CISA, CISM, CISSP, or a similar professional certification preferred.
Professional certification in auditing or IT, i.e. ISACA, (ISC)2, the IIA, preferred at time of hire, or within
one-year of employment at the discretion of management.
PHYSICAL REQUIREMENTS/ WORKING CONDITIONS – ENVIRONMENT
The physical demands and working environment described here are representative of those that an employee
encounters and must be met by an employee to successfully perform the essential functions of this job.







Primary work environment is in a climate controlled office and gaming facility. Work requires travel to
attend meetings, trade shows, and conferences. Incumbents may be required to work evening, weekend
and holiday shifts.
Sedentary work; involves sitting most of the time. Constantly operates a computer and other office
productivity machinery, such as a computer printer, copy machine and calculator. Must be able to work
on a computer for extensive amounts of time on a daily basis.
Must be able to work in a fast paced, high demand, high volume environment.
The ability to work in a fast-paced demanding environment while maintaining accuracy, physical
stamina, composed demeanor, and the vigilant mental attitude to deal effectively with guests, casino
employees, team members and outside vendors.
Strength sufficient to exert up to 10 pounds of force occasionally and/or a negligible amount of force
frequently or constantly to lift, carry, push, pull or otherwise move objects and/or move up to 40 pounds
occasionally.
Physical activities that apply to the essential functions of the position are: balancing, stooping, kneeling,
crouching, reaching, pushing, pulling, lifting, fingering, grasping, talking, hearing, repetitive motions.
Hearing sufficient to hear conversational levels in person and over the telephone.
IT Auditor I, GC
Page 3 of 4





Speech sufficient to make oneself heard and understood in person, in front of groups, in meetings, and
over the telephone.
Visual Acuity that best describes the requirements of the position: The worker is required to have close
visual acuity to perform an activity such as: preparing and analyzing data and figures; transcribing;
viewing a computer terminal; expansive reading; visual inspection of employees, visitors or facility.
Mobility sufficient to safely move in an office and gaming environment, walk, stoop, bend, kneel, and enter,
exit and operate a motor vehicle in the course of travel to promotional events, meetings, conferences,
trade shows and San Manuel properties.
Endurance sufficient to sit, walk and stand for extended periods, and maintain efficiency throughout the
entire work shift and during extended work hours.
The employee will be exposed to fumes or airborne particles including secondhand smoke.
San Manuel Band of Mission Indians and San Manuel Indian Bingo and Casino will make reasonable
accommodations in compliance with the Americans with Disabilities Act of 1990.
IT Auditor I, GC
Page 4 of 4
Related documents
(financial and operational) auditor internal (financial and operational
(financial and operational) auditor internal (financial and operational
Indian Gaming Audit Issues and Challenges
Indian Gaming Audit Issues and Challenges
Case
Case
Internal Auditor Job Description
Internal Auditor Job Description
qualification of auditors according to the companies act
qualification of auditors according to the companies act
Auditor Reporting ppt
Auditor Reporting ppt
Download
advertisement