Senior Systems Development Review Auditor
Company: Liberty Mutual Holding Company Inc.
Posted on: January 5, 2019
Advance your career at Liberty Mutual - A Fortune 100 Company! This Senior Systems Development Review (SDR) Auditor plays a significant role in assisting Senior Executives with risk management, achievement of strategic objectives and fulfilling the Company's promise to its policyholders. The Global Internal Audit System Development Review squad is responsible for reviewing system implementation and change initiatives across the organization. The Senior SDR Auditor executes reviews by partnering with the agile squads as they are doing their work, before deployments. This hybrid audit role participates in pivotal agile events (e.g., Sprint Planning, User Story Refinement, Demos, Quarterly Program Increment Planning) during each review. While adapting to each flavor of agile (SAFe, Scrum, Kanban), the Senior SDR Auditor is tasked to build relationships with Product Owners and Scrum Masters. Our goal is to provide value-add service by helping improve quality, address related risks, and enhance the overall control structure of each initiative reviewed. The Senior SDR Auditor primarily leads projects and participates as a lead staff on project teams that conduct independent assessments of Liberty Mutual's system initiatives, inclusive of each initiative's operational and IT internal control environment, and IT infrastructure through the execution of risk analysis, control evaluation, and innovative audit testing procedures and techniques. Individuals in the Senior SDR Auditor role demonstrate the ability to independently apply the department's audit methodology, as well as common agile practices (e.g. Scrum, Kanban, SaFE). They participate on all phases of the audit from planning to reporting, including understanding the business operations and technology technologies under review, scoping the audit, identifying risks and controls, designing and executing testing with minimal oversight and assistance with writing audit reports. Responsibilities: * Independently conducts thorough risk analysis, control identification and SDR review program development. Independently concludes on the effectiveness of controls and control gaps based on the results of testing. Demonstrates the ability to multi-task, by clearly documenting the results of testing on more than one SDR engagement concurrently. * Demonstrates knowledge of routine business processes, IT systems and processes, and continues development of technical and analytical skills to understand more complex processes and related technologies. Interprets the associated risks, develops testing approach, and proposes solutions. * Furthers insurance industry and technical knowledge. Demonstrates a strong understanding of the department's audit methodology, insurance industry concepts, Cyber Security, IT General Controls and Agile Software Development Practices. Effectively demonstrates these capabilities when completing assigned work. * Effectively communicates SDR engagement and related recommendations in both technical and non-technical terms to Operational and IT management. Makes sound recommendations for audit finding rankings and effectively supports conclusions during discussions with audit clients. * Contributes to continuous improvement (CI) efforts. Begins leading root cause problem solving efforts and participates in department-wide CI efforts * Demonstrates increased technical understanding of data analysis concepts and practices. Effectively uses the department's data analysis software to facilitate audit scoping and testing. Shares knowledge and experience with less experienced team members. * Takes an active role in facilitating the training and development of less experienced team members. * Aware of changes in Agile practices, operational and IT audit practices (e.g. Scrum, SaFE, Kanban, System Development Life Cycle), regulatory requirements, and IT Risk frameworks to understand their impact to Auditing and Liberty. (e.g. NIST Cyber, CSC, COBIT, ISO2700x) Qualifications: * Requires in-depth Agile Development or IT Audit skills as typically acquired though a Bachelor's degree in Computer Science, Management Information Systems or a comparative field. * Two or more years of Agile development, Operational audit, IT Audit or information technology experience with a focus on security, risk management, or system development. * Demonstrated ability to evaluate internal controls, effectively execute large portions of an audit independently, analyze and solve complex problems, conduct research, and express ideas clearly, concisely and persuasively both verbally and in writing. * Demonstrates a strong understanding of business ethics. * CISA, CIA, and/or PMI-ACP Certification is preferred. CISSP or other technical / IT security certifications are a plus. Benefits: We value your hard work, integrity and commitment to positive change. In return for your service, it's our privilege to offer you benefits and rewards that support your life and well-being. To learn more about our benefit offerings please visit:SDL2017
Keywords: Liberty Mutual Holding Company Inc., Fairfield , Senior Systems Development Review Auditor, Accounting, Auditing , Fairfield, Ohio
Didn't find what you're looking for? Search again!