Controls Assurance and IT Compliance Auditor

Purpose

This position provides an opportunity for a motivated and promising audit professional to make a strong contribution to Global Payments  growing Audit Services Group.

As a leading payments technology company, Global Payments management recognizes the importance of managing and responding to risk. The Audit Services Group is an integral and valued component to the Global Payments risk management environment and works closely with management to deliver value-added and challenging audit projects in the areas of information technology, information security, business operations, finance & accounting, regulatory, advisory, and compliance using progressive audit procedures.

This role will deliver a diverse array of business process and information technology audits in a growing, international business environment with a focus on internal controls assurance (SOX, SSAE18, and customer assurance audits). The position will also assist the planning and execution, reporting, follow-up of audit engagements. This position provides the opportunity for future career advancement, exposure to senior leadership, and some travel.

Familiarity with common compliance and regulatory frameworks, including SOX and SSAE18 is preferred.

Essential Responsibilities

• Conduct assurance reviews and audits to evaluate the design and effectiveness of controls supporting the company's business processes and information systems, with specific focus on IT General Controls.
• Execute assigned aspects of the audit process, including planning, risk assessment, controls identification, client coordination, fieldwork, data analysis, work paper documentation, reporting, and remediation validation, with direction from senior team members.
• Understand business and IT processes to identify risks and evaluate internal controls.
• Document thorough understanding of business processes, including the role of technology in supporting the processes. Effectively perform testing of automated business process controls.
• Assess information technology design and operating effectiveness, particularly related to application and infrastructure logical access, change management, and operations, as well as more common information security considerations.
• Evaluate root cause factors, extent of risk, and mitigating/compensating controls for audit testing exceptions.
• Track and report project status and milestones to project leadership and/or management.
• Discuss audit results, their impact, and recommendations for corrective actions with Audit Services Group project leadership, external audit partners, and/or management.
• Build and develop Audit Services Group's brand within the company through meaningful relationship building.
• Enable continuous improvement of the Audit Services Group by identifying and communicating enhancement opportunities to department leadership.

Knowledge, Skills, and Abilities

• Audit and/or consulting experience in most of these areas - Information technology controls, including access controls, systems development and change management, IT operations, and information and data security; Merchant Acquiring / Payment Processing industry, including underwriting, on-boarding, risk management, chargebacks and other back-office processes; Automated business process controls

• Experience in testing information security controls at the application, operating system, and database layers – including logical access, change management, operations, and information security controls considerations

• Experience in executing  regulatory compliance projects.

• Demonstrate strong execution skills, prioritizing tasks, balancing workload, anticipating next steps, and adapting to change.

• Tailor project approaches based on areas of key risks. Critically evaluate audit procedures to maximize the value of each audit project.

• Proactively communicate issues with colleagues and obtain agreement on audit findings and practical recommendations with control owners prior to presentation to management.

• Good communication and presentation skills with an ability to tailor communications to different audiences.
• Prepare clear, concise, and accurate documentation and audit reports. Ensure compliance with audit standards.
• Pursue work with enthusiasm, energy, drive, and team collaboration. Maintain a positive, professional, and team oriented attitude. Maintain a positive, professional, and team-oriented attitude.
• Establish and build effective relationships. Collaboratively work with management to improve internal controls and processes.

Required Qualifications

• Bachelor's degree in Accounting, Auditing, Business Management or Information Technology.
• 2-3  years of relevant audit experience.
• Merchant Acquiring/Payment Processing industry experience desired.
• Knowledge of auditing principles and practices, including the analysis and reporting of audit information.
• Knowledge of IT control concepts, including access controls, information security, process automation, systems development and change management.
• CPA, CIA, or CISA certification preferred, or willingness to obtain certification within 2 years of employment.
• Big Four (or equivalent) audit experience preferred.
• 0%-5% travel, including some international travel