Overview
From $84,156 to $106,454 Annually
To Be Determined
Qualifications
No exam required under the New York Hiring for Emergency Limited Placement Statewide (NY HELPS) Program.
- Seven years of IT audit experience gained in any one or combination of the following:
- Responsibility for performing IT-related audits and examinations to determine the compliance of agencies, authorities, municipalities, and schools, including reviews of physical and logical access controls, general IT controls, and application controls, and the writing and presentation of findings reports of technical issues to a non-technical audience.
- Responsibility for the analysis and evaluation of information systems, such as platforms, applications, network infrastructure, and/or IT-related operational practices and the writing and presentation of reports of findings suitable for non-technical audience.
- Responsibility for supporting an audit group, such as designing, developing/programming, maintaining technological solutions in support of audit activity, and evaluating and developing artificial intelligence programs in support of audit activity.
Education/Experience Substitutions
- An associate’s degree may be substituted for up to two years of IT audit experience.
- A bachelor’s degree may be substituted for up to four years of IT audit experience.
- A master’s degree may be substituted for an additional one year of IT audit experience (i.e., up to five years of experience). There is a maximum of 5 years of educational substitution.
- One year of generalized audit experience may be substituted for one year of IT audit experience.
Duties
Information Technology Audit Support Services
- Working on specialized IT audits, projects and studies that incorporate advanced and complex IT matters, IT auditing tools and/or emerging technologies.
- Conducting IT-related audit work in accordance with Generally Accepted Government Auditing Standards, IT security requirements and industry standards.
- Providing consultation and hands-on assistance to Division audit teams and auditees on technical IT matters during financial or performance audits.
- Keeping up to date on emerging technologies and keeping Unit Management informed of related trends and developments.
- Conducting research and developing proposals recommending topics for future specialized IT audits, projects, audit tools, publications and/or training.
- Using advanced IT auditing tools such as Nmap, Nessus and AppScan.
- Developing and performing tests of IT controls to determine whether they have been placed in operation and are operating effectively and whether there are adequate controls in place.
- Analyzing and evaluating the adequacy of auditee’s cybersecurity governance, IT policies and procedures and internal controls.
- Evaluating data, information systems, and procedures relating to IT audit/special project areas for compliance with applicable laws, rules, and regulations.
- Participating in and/or conducting interviews with auditees and performing walk-throughs to assist in the evaluation of information system controls.
- Writing and/or assisting audit teams with writing preliminary audit findings, discussion documents, draft reports, and/or special project documents.
- Advancing the Division’s IT auditing capabilities.
Technology Assistance and Training
- Training and supporting other Unit staff using advanced IT auditing tools and developing related Division policies and procedures.
- Assisting Division audit staff in assessing and testing controls over computerized systems in local governments and schools across the State.
- Training Division staff on various IT auditing topics and technologies.
- Training local officials on cybersecurity governance and IT-related topics.
- Identifying appropriate training and professional development opportunities to help ensure staff are prepared to perform their job responsibilities.
Supervision
- May assist in the supervision of Auditor 1s, Information Technology Specialist 1s, trainees or other titles.
Travel
It is expected that this position may require up to 30% travel including overnight visits around the State. This position can be assigned to the Central Office in Albany or any LGSA Regional Office with available space (Syracuse, Buffalo, Binghamton, Glens Falls Newburgh, Hauppauge, or Rochester)
Desired Competencies
- IT industry experience and/or IT or information systems degree.
- Relevant professional certification(s) (CISA, CISSP, CISM, CRISC, CISSP, ISSMP, CIA).
- Familiarity with GAGAS, CIS, COBIT, COSO and NIST CSF frameworks.
- IT audit experience including but not limited to, conducting cloud security, artificial intelligence, Operating Systems (e.g., Windows, MacOS, ChromeOS), access controls, application, database and/or system security audits.
- Independently conducts, documents and reports on advanced IT research topics that are relevant to audit initiatives and other projects.
- Effectively communicates orally and in writing, exhibiting excellent interpersonal skills with staff and customers.
- Works well independently and in a team environment.
- Organized, detail-oriented and produces an accurate and timely work product.
- Effectively applies work unit policies and procedures.
- Handles multiple and sometimes competing priorities.
- Strong work ethic and positive attitude.
Cover Letter, Resume & Template
Reference Item #02933(Multiple)-BEP on your cover letter for proper routing.
PLEASE NOTE: You MUST complete the linked template in full to demonstrate you meet the minimum qualifications for this position. Interview selection is based SOLELY on the information you provide in this document, incomplete or vague information will not be viewed in your favor. To access the required template, download, complete, and submit below. Interview selection is based solely on the information provided.