Sr Corporate Internal Auditor in Hoffman Estates, IL at Sears Holdings Corporation

Date Posted: 2/28/2018

Job Snapshot

  • Employee Type:
  • Location:
    3333 Beverly Road
    Hoffman Estates, IL
  • Date Posted:
  • Job ID:

Job Description

Req/Job ID: 906464BR
Employing Entity: Sears Holdings Management Corporation
Employment Category: Regular, Full-time
Job Function: Audit
Store ID: 58491: Sears Holdings Management Corp

The senior IT Auditor conducts technology-focused operational and compliance audits. The candidate will be responsible for preparing process maps and flowcharts, identifying and evaluating the design of IT controls, creating and executing substantive test plans, and making initial determination of reportable issues. The candidate will perform risk assessments to identify prevalent risks throughout the organization with IT and business management. The candidate will work closely with the Audit Manager and may supervise the work of interns and staff auditors on projects.

Job Requirements

  • Evaluates risks and the adequacy of related controls within technologies including enterprise applications, systems, databases, network devices, and emerging risks related to technologies such as Cloud Computing, GRC, CyberSecurity, etc.
  • Performs business unit risk assessments, meets with business leadership, and reviews strategic objectives to identify and quantify risk areas and potential audits.
  • Maintains and updates the organization's IT Risk Universe, adding to overall organizational risk awareness and highlighting key emerging risks.
  • Conducts project related planning activities including developing audit scope, risk matrix, and test steps.
  • Leads or participates in portions of compliance-based technology audits addressing Sarbanes-Oxley and Privacy (PCI, HIPAA, member and employee data).
  • Leads operational audits focused on business units and key business processes, such as global sourcing, social media, pricing and online content management.
  • Demonstrates knowledge over IT general control domains and areas of company operations.
  • Collaborates with teams such as Information Security to address risk for the organization and assess the effectiveness of management remediation.
  • Provides recommendations to audit memos and reports and meets with business management to ensure that audit findings are effectively communicated and addressed by the organization.
  • Follows up to ensure adequate action has been taken by management to meet accepted recommendations
  • Provides audit perspective during the development of new systems, procedures and policies to help ensure that adequate controls are established.
  • Attends industry, audit, and technology risk training and events to develop and enhance relevant knowledge and techniques

  • 3-6 years of related IT Audit experience. Successful candidate likely to have public accounting or Retail or large industry experience.
  • Bachelor's Degree in technology (Management Information Systems, Computer Science, Computer Engineering, CyberSecurity, Data Analytics, etc.) or related field.
  • CISA, CISM, CISSP, or related certification preferred although successful candidate will be encouraged to work towards a professional qualification.
  • Working knowledge of IT security and compliance standards, requirements and frameworks such as SOX and PCI DSS.
  • Working knowledge of internal auditing concepts, approaches, tools, techniques and IT controls.
  • Working knowledge of IT standards, frameworks and best practices such as the CobiT Framework, ISO 27001/27002, and NIST.
  • Intermediate knowledge of risks related to Cybersecurity, Cloud Computing, and Data Analytics.
  • Experience working with various technology delivery channels including desktop, web and mobile, and infrastructure software including operating systems and databases.
  • Excellent oral and written communication skills and an ability to manage multiple tasks concurrently in an efficient and effective manner with minimal supervision.
  • Strong analytical thinking, problem solving and information processing skills with ability to make sound judgements based on knowledge, experience, and observations.
  • Basic knowledge of data analysis tools (IDEA, ACL, etc.)