This job has closed.

The World Bank · 2 days ago

IT Audit Specialist - req35180

Washington, DC

Full-time

Onsite

Senior Level

5+ years exp

The World Bank is a global partnership dedicated to ending extreme poverty and promoting sustainable development. They are seeking an IT Audit Specialist to provide independent, objective, and insightful risk-based assurance and advisory services, focusing on IT, Cyber Security, and Data Management. The role involves conducting audits, performing risk assessments, and supporting data analytics.

International Trade & Development

Responsibilities

Working on dynamic risk assessment - performing risk assessments of business units, business processes and technologies as input into annual work program

Supporting multiple engagements concurrently

Completing major components of audits, including critical technology functions, cloud-based infrastructure, emerging technology, cybersecurity, risk management, application, and data protection/privacy management

Developing process descriptions and key control narratives

Developing audit plans and performing tests of controls

Coordinating and conducting client interviews

Summarizing and communicating results

Engaging closely with key clients

Leading and coordinating integrated IT audit work

Supporting data analytics

Qualification

IT control frameworksCybersecurity auditsCloud-based solutionsData analysisERP security reviewsInformation securityProject managementStakeholder managementAnalytical skillsCommunication skillsTeam collaboration

Required

A minimum of 5 years' relevant experience, preferably in financial institutions, international organizations, or similar environment

Master's degree in relevant field, or 7+ years relevant experience with bachelor's degree

Certifications related to Cyber Security, Information Security, Technology, Project Management or Auditing

Demonstrated knowledge of networks technology, identity and access management, operating systems, midrange platforms, personal computers, system development (SDLC, DevSecOps), databases, client/server architecture

Experience in utilizing data analysis in support of internal auditing

Experience in conducting IT integrated, application reviews and system development life-cycle audits

Excellent analytical, organizational, and communications skills; ability to successfully manage high-priority projects with a variety of stakeholders and deliver high-quality work

Excellent partnering skills and stakeholder management

Effective oral and written communications skills

Maintaining a continuous improvement mindset, embracing agility and being open to change. Proactive and innovative, with an open and collegial work style with an ability to listen and integrate ideas from diverse views, create partnerships, and collaborate with others

Preferred

Audit/Consulting experience with Big 4 Firms is welcome

5+ years of experience with IT control and risk management frameworks

3+ years of experience in planning and conducting audits or project/process management

1+ years of conducting audits of cybersecurity controls, cloud-based solutions or emerging technologies such as RPA, IoT and AI

Certified Information Security Professional (CISSP) considered a plus

Expertise as a practitioner or auditor in one of the following areas: information security operations or Network operations; Project Management and Governance; ERP security and control reviews (Oracle, SAP, PeopleSoft)