Senior Auditor jobs in United States
cer-icon
Apply on Employer Site
company-logo

University of Michigan · 18 hours ago

Senior Auditor

positionAnn Arbor, MI
timeFull-time
remoteHybrid
senioritySenior Level

The University of Michigan is consistently ranked as one of America's top public universities, and they are seeking an outstanding senior auditor to join their Audit Services team. The role involves planning and performing IT audits and advisory engagements across the university, focusing on risk management, internal controls, compliance, and governance processes.

E-LearningEducationHigher EducationUniversities
check
Growth OpportunitiesbadNo H1Bnote

Responsibilities

Plan and perform IT audits, including risk assessment, audit planning, fieldwork, analysis, evaluation of the adequacy of IT controls, and preparation of audit reports
Assess adherence to university policies and accepted standards (e.g., NIST, FERPA) and evaluate systems for confidentiality, integrity, and availability
Evaluate security controls for effectiveness, efficiency, compliance with legal requirements, and alignment with management objectives
Perform risk-based technical assessments of information systems and cybersecurity controls, which may include configuration reviews, vulnerability assessments, or other targeted security testing activities, as appropriate
Partner with institutional and cybersecurity teams to evaluate detection, response, and recovery capabilities
Evaluate the maturity of security architectures, identity and access management controls, and cloud configurations (e.g., AAWS, Azure, GCP)
Serve as a technical resource within Audit Services for cybersecurity risk, emerging threats, and technology-related control considerations
Proactively keep the associate director informed of audit progress, emerging risks, and significant issues
Assist with the support, configuration, and maintenance of audit management tools
Perform other duties and special projects as assigned

Qualification

IT auditingCybersecurity controlsRisk assessmentData analysisInformation systemsControl frameworksCloud configurationsCommunication skillsCollaborationTeamworkProblem-solvingAdaptability

Required

Bachelor's degree in management information systems, accounting, computer science, or related field
Relevant information technology experience and/or IT audit experience in a distributed and sophisticated information technology environment
Demonstrated expertise related to information systems auditing concepts, including security and control risks in the areas of logical and physical security, access controls, change management, data protection, operational resilience, networking, and modern cloud-based environments
Experience collecting and analyzing complex data, evaluating information and systems, drawing logical conclusions, and working collaboratively
Working knowledge of information technology and security best practices, control frameworks, business process mapping, and risk and controls identification
Excellent written and verbal communications and the ability to interact effectively with technical and non-technical stakeholders
Understanding of the concepts of internal controls in an IT context and risk assessment methodologies. However, inquisitive individuals with strong technical IT skills who are willing to learn auditing, are also encouraged to apply
Ability to work effectively and collaboratively in a diverse work group and across the broader university community
Ability to meet hybrid work requirements, including residence within commuting distance of Ann Arbor and access to a secure, confidential remote workspace

Preferred

Graduate degree in a related field (e.g., information systems, cybersecurity, or audit)
Applied knowledge of cybersecurity and IT risk frameworks, such as the NIST Cybersecurity Framework and Center for Internet Security (CIS) controls
Experience performing advanced security or technical assessments, which may include vulnerability scanning, penetration testing, configuration reviews, or adversarial-style testing activities
Familiarity with ethical hacking concepts, threat modeling, or adversary techniques used to assess cyber risk and control effectiveness
Experience working with or alongside cybersecurity operations, incident response, or security monitoring teams
Experience using data analytic or technical tools (e.g., ACL, IDEA, Tableau, scripting or security testing tools) to support audit or risk assessment activities
Knowledge of higher education operations, university systems and data, and other compliance/regulatory requirements (e.g., FERPA, HIPAA, PCI DSS, GLBA)
Professional certifications such as CISA, CIA, CISSP, CEH, OSCP, or other relevant certifications

Benefits

Comprehensive benefits package

Company

University of Michigan

twittertwittertwitter
Glassdoor4.3
company-logo
The mission of the University of Michigan is to serve the people of Michigan and the world through preeminence in creating, communicating, preserving, and applying knowledge, art, and academic values, and in developing leaders and citizens who will challenge the present and enrich the future.
dateFounded in 1817
location
Ann Arbor, Michigan, USA
people-size10001+ employees
web-link
https://www.umich.edu

Funding

Current Stage
Late Stage
Total Funding
$359.75M
Key Investors
Michigan Economic Development CorporationNational Institutes of HealthBreakthrough T1D
2025-07-17Grant· $1M
2025-06-07Grant· $1.17M
2025-04-23Grant

Leadership Team

leader-logo
Greg McGuire
Managing Director, Mcity
linkedin
leader-logo
Robert Goodspeed
Chair, Urban and Regional Planning Program
linkedin

Recent News

News-Medical.Net
Study finds a new protein target against KRAS-driven non-small cell lung cancer
2025-12-19
IEEE Spectrum
A Chip That Keeps Time (Almost) Like an Atomic Clock
2025-12-18
News-Medical.Net
AI enables rapid detection of coronary microvascular dysfunction from standard EKGs
2025-12-17
Company data provided by crunchbase