Ref No.: 17-00491
Location: McLean, Virginia
Position Request: IT Auditor

US Citizen Required

Responsibilities for position:
  • Execute the day-to-day activities of IT controls assessment for Navy Legacy systems including assess general and application controls using the Federal Information Systems Controls Audit Manual (FISCAM) or ISACA Cobit methodology
  • Provide best practices on how to efficiently and effectively audit the access controls and configuration management controls
  • Evaluate the design and effectiveness of technology controls throughout the business cycle
  • Identify and communicate IT audit findings to senior management and clients
  • Assess application controls within Navy legacy systems (NSIPS, CFMS, FASTDATA)
  • Help identify performance improvement opportunities
  • Provide technical guidance on different technologies, which could include Mainframe, Unix and or Windows environments.
  • Have ability to travel to local Navy locations (Washington Metro Area). Also must have the ability to travel throughout the United States based on project need.
  • Possess a SECRET clearance (or higher) or be eligible to obtain one.

Additional Qualifications and Responsibilities:
  • Minimum Experience: 7 years of progressive experience participating in business or financial management services and related projects, including 3 years' experience in a managerial capacity.
  • At a minimum, 5 years of experience leading complex IT security control reviews (per SOW).
  • Experience in PPBE or H2R business cycles and controls and/or IT general and application controls assessments
  • Experience in identifying and developing audit procedures around Federal IT systems, including general and/or application controls
  • Certified Information Systems Auditor (CISA) a plus

  • Review team member work papers and provide coaching as needed
  • Lead a team of two to four Associates to execute the IT controls assessment plan
  • Lead the development of the IT controls assessment plan and associated scoping
  • Develop a thorough work break down structure for executing the IT controls assessment based on the specifications in the tasks statement of work
  • Lead IT control finding discussions with Navy management