Responsible for independently conducting and documenting complex IT, compliance and financial audit projects.
ESSENTIAL DUTIES AND RESPONSIBILITIES
Performs complex audit testing verifying the effectiveness of established processes and procedures and verbally communicates and confirms audit findings/observations identified through detailed testing.
Audits the IT systems, applications and data of various departments, divisions and locations in order to verify accuracy and for compliance with plans, policies and procedures prescribed by management.
Provides guidance to staff members on audit and special projects through knowledge sharing and assistance with task assignments, while fostering a strong team environment.
Conducts client interviews to understand and document processes and procedures.
Interprets policies and procedures and applies professional auditing principles and standards to test and evaluate complex systems, applications, infrastructure and records. Designs audit programs that adequately address risk and compliance with Company standards and relevant legal and contractual regulations.
Prepares and submits reports on the results of audits and recommends improvements in policies and procedures.
Performs other duties as assigned.
Provide guidance to staff members on audit and special projects through knowledge sharing and assistance with task assignments. Provide assistance with planning audit assignments which can including scheduling planning meetings with internal professionals/clients and the assigning of tasks to team members.
To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential
EDUCATION and EXPERIENCE
Bachelor's degree in computer science, software engineering, management information system, information security or a related field. 4+ years of external/internal audit and overall knowledge of general IT, accounting and audit procedures.
CERTIFICATES and/or LICENSES
At least one of the following professional certifications: Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), Certified Information Systems Security Professional (CISSP), Certified Public Accountant (CPA) or Certified Internal Auditor (CIA) (or at least a commitment to obtain within the first six months).
Ability to comprehend, analyze, and interpret various types of business documents. Ability to effectively respond to complex inquiries from internal professionals/clients, co-workers, supervisor, and/or management. Ability to present information to client, internal department and/or large groups of employees.
Knowledge of commonly used internal IT risk and control frameworks and standards, including Control Objectives for Information and Related Technologies (COBIT), ISO 27001, NIST Cybersecurity Framework (CSF), Center for Internet Security (CIS), etc. Familiarity with Sarbanes-Oxley Act, and EU General Data Protection Regulation (GDPR) provisions and methodologies for achieving compliance, in particular the technology implications and requirements. Familiarity with the software development life cycle (SDLC), system implementation, system operations and administration, change and problem management, logical security and related risks and controls. Interest and ability to stay abreast of and understand new/emerging and complex technologies (e.g., artificial intelligence, machine learning, robotic process automation, internet of things, etc.) and processes (e.g., Agile, Kanban, Scrum, DevSecOps, etc.) and effective assessment of risks, controls and deficiencies.
Knowledgeable of Generally Accepted Accounting Principles (GAAP) and Generally Accepted Auditing Standards. Basic analytical and quantitative skills. Ability to analyze complex IT and business data and develop innovative solutions.
Ability to analyze and solve problems involving several options with limited information. Interpret a variety of instructions furnished in written, oral, diagram or schedule form and to work independently. Requires advanced IT knowledge and basic analytical and quantitative skills.
OTHER SKILLS and/or ABILITIES
Ability to work independently to complete tasks and assignments. Willingness and flexibility to travel (domestic and international). Knowledge of computer-based controls and skills in the use of computers in conducting audit activities. Proficient in Microsoft Office products including Visio, PowerPoint, Excel, Word and Outlook. Knowledge and proficiency in Teammate and other audit software (e.g., IDEA, ACL, etc.) is a plus.
SCOPE OF RESPONSIBILITY
Decisions made with understanding of procedures and company policies to achieve general results and deadlines. Errors in judgment may cause short-term impact to co-workers and supervisor.
Internal Number: 19021286
With broader and deeper capabilities than any other company, CBRE is the leading full-service real estate services and investment organization in the world.
CBRE Group, Inc. is the world’s largest commercial real estate services and investment firm, with 2017 revenues of $14.2 billion and more than 80,000 employees (excluding affiliate offices). CBRE has been included in the Fortune 500 since 2008, ranking #214 in 2017. It also has been voted the industry’s top brand by the Lipsey Company for 17 consecutive years, and has been named one of Fortune’s “Most Admired Companies” in the real estate sector for six years in a row. Its shares trade on the New York Stock Exchange under the symbol “CBRE.”
CBRE offers a broad range of integrated services, including facilities, transaction and project management; property management; investment management; appraisal and valuation; property leasing; strategic consulting; property sales; mortgage services and development services.