Sr. IT Auditor (Remote)

Posted:
10/31/2024, 5:00:00 PM

Location(s):
Wisconsin, United States ⋅ Menomonee Falls, Wisconsin, United States

Experience Level(s):
Senior

Field(s):
IT & Security

Role Specific Information

Job Description

About the Role

In this role you will be responsible for leading cyber security, cloud, operational, and compliance reviews of Kohl’s Technology operations, processes, and initiatives. The Senior IT Enterprise Risk Analyst will also perform risk advisement and remediation follow-up across the Kohl’s Technology organization.


 

What You’ll Do

  • Assess cyber security, cloud, operational, and compliance risk in Kohl’s technology and develop detailed audit procedures to develop risk-based audit programs

  • Obtain and analyze information for evidence of cyber security violations, deficiencies in internal controls, or lack of compliance with laws, government regulations, and Kohl's policies and procedures

  • Challenge existing processes including suggesting more efficient or alternative methods to achieve objectives

  • Prepare work papers to clearly support the audit conclusion in accordance with internal auditing standards

  • Communicate the results of audit/projects to senior leaders and collaborate with senior leaders to develop action plans addressing identified risk/process gaps

  • Follow-up with Technology leadership to ensure agreed-upon recommendations have been implemented

  • Lead PCI assessment activities, in partnership with Information Security team

  • Manage PCI Assessor to review completion

  • Assess Sarbanes-Oxley ITGC controls design

  • Execute Sarbanes-Oxley process walkthroughs, testing and follow-up

  • Support the continuous improvement of technology compliance activities

  • Execute banking partner security reviews and follow-up

  • Lead communication with banking partner on follow-up status and remediation

  • Manage and prioritize multiple assignments including all audits and project involvement

  • Inform stakeholders of project status and execute to planned project timelines

  • Provide timely results of audit and communicate recommended solutions

  • Pursue opportunities to improve team communication, organizational, technical, and analytical skills

  • Support the development of project staff/interns

  • Develop strong cross-functional relationships across multiple levels within organization

  • Support risk advisory activities across the technology and business organization

  • Additional task may be assigned as necessary 


 

What Skills You Have

Required

  • Bachelor's Degree in MIS or similar related field

  • Minimum of 2+ years of experience in IT audit, cyber security, IT consulting or similar roles

  • Ability to comprehend and analyze technology systems and environments

  • Experience communicating with various levels of management

Preferred

  • Certifications such as CISA, CISSP, CIA desired

  • Word processing and spreadsheet software, Google apps collaboration tools, and data analysis tools

  • Cloud platforms including GCP

  • Technical server, database, messaging, integration, and CICD platforms

Essential Functions

The requirements listed below are representative of functions you will be required to perform, however you may be required to perform additional functions. Kohl’s may revise this job description from time to time. To perform this job successfully, you must be able to perform each essential function satisfactorily. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions, absent undue hardship.

  • Ability to perform the accountabilities listed in the “What You’ll Do” Section

  • Ability to maintain prompt and regular attendance as set by the company 

  • Ability to work at least 8 hours per day, occasionally longer when necessary to meet business needs, 5 days per week

  • Ability to comply with dress code requirements

  • Ability to learn and comply with all company policies, procedures, standards and guidelines

  • Ability to give direction and receive, understand and proactively respond to direction from leadership and other company personnel

  • Ability to work as part of a team and interact effectively and appropriately with others

  • Ability to maintain composure and work in a fast paced environment while accomplishing multiple tasks within established timeframes

  • Ability to satisfactorily complete company training programs

  • Perform work in accordance with the Physical/Cognitive Requirements section

Physical/Cognitive Requirements 

  • Ability to use a personal computer for tasks such as communicating, preparing reports, etc.

  • Ability to plan, prioritize and monitor activities across business units

  • Ability to complete or oversee the completion of assigned projects in a timely manner

  • Ability to comply with health and safety standards