Brentwood, TN, US
13 days ago
Senior Information Technology Auditor
Overall Job Summary

This position is responsible for performing assurance and consulting services and audits of information systems and IT business processes at the Store Support Center (SSC) and for helping Tractor Supply Company (TSC) accomplish its objectives by evaluating and improving the effectiveness of risk management, control, and governance processes.

Essential Duties and Responsibilities (Min 5%) Develop a detailed understanding of business processes, policies, risks and controls in information systems and the Information Technology Department and prepare narratives and walk-throughs to document this understanding. Identify risks and internal controls.  Create audit procedures required to meet audit objectives; Assist the rest of the Internal Audit Team with IT audit expertise on financial and operational audits when needed. Compile and evaluate information though inquiry, tests, analyses, and observations to develop conclusions about risks and the operating effectiveness of internal controls. Work with business process leaders to identify solutions to solve problems, improve work processes and strengthen controls. Prepare working papers to document the information obtained, analyses made, and support for the conclusions and engagement results. Assist the IT Audit Director with writing audit reports and discussing with management the audit results and recommendations for improvement. Mentor and guide other Internal Auditors and review the quality of their work plans and completed audit procedures. Required Qualifications

Experience: 3+ years of IT audit experience is required. Retail experience is preferred.

Education: Bachelor’s degree in Finance, Accounting, IT, or related field is required.  Any suitable combination of education and experience will be considered.

Professional Certifications: Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), or Certified Internal Auditor (CIA) designation is preferred.

Preferred knowledge, skills or abilities Skilled in relating to all kinds of people inside and outside the Company; Strong communication and interpersonal skills (required). Skilled with gathering, documenting and evaluating information to solve difficult problems (required). Ability to think critically and develop conclusions (required). Ability and proficiency in Microsoft Office products including database software (required). Knowledge of financial reporting risks and internal controls (preferred). Skilled in performance of IT General Controls for Sarbanes-Oxley; Working knowledge of Payment Card Industry Data Security Standards (required). Knowledge of information technology risks and controls and available technology-based audit techniques (required). Knowledge of IT business processes and risks and related internal controls (required).  Ability to perform IT audits and assessment projects from start to finish, including planning, risk assessment, identifying controls, creating audit procedures, testing work processes and controls, preparing work papers, and developing conclusions about IT and business processes, risks and controls (required). Ability to travel overnight 5-10% to stores, distribution centers and other business locations (required).     Knowledge of ISACA's IT Assurance Framework and the IIA's International Standards for the Professional Practice of Internal Auditing (preferred). Knowledge of enterprise resource planning (SAP), data repositories such as Business Objects, point of sale systems and warehouse management systems (preferred). Knowledge in audit tools such as ACL (preferred).   
  Working Conditions Normal office working conditions Occasional travel to stores, distribution centers, and other business locations Physical Requirements Sitting Standing (not walking) Walking Kneeling/Stooping/Bending Driving a vehicle Reaching overhead Lifting up to 20 pounds Disclaimer

This job description represents an overview of the responsibilities for the above referenced position.  It is not intended to represent a comprehensive list of responsibilities.  A team member should perform all duties as assigned by his/ her supervisor.

Confirm your E-mail: Send Email