Who We Are
Join a team that puts its People First! Since 1889, First American (NYSE: FAF) has held an unwavering belief in its people. They are passionate about what they do, and we are equally passionate about fostering an environment where all feel welcome, supported, and empowered to be innovative and reach their full potential. Our inclusive, people-first culture has earned our company numerous accolades, including being named to the Fortune 100 Best Companies to Work For® list for nine consecutive years. We have also earned awards as a best place to work for women, diversity and LGBTQ+ employees, and have been included on more than 50 regional best places to work lists. First American will always strive to be a great place to work, for all. For more information, please visit www.careers.firstam.com.
What We Do
Assists in assessing the adequacy of global technology security and controls for the corporation, including performing risk assessments of global IT policies, strategies and controls, as well as executing an effective IT audit plan.
Essential Functions
- Conducts complex internal audits in conformity with First American policies, procedures and generally accepted auditing standards. Participates in risk assessments and audit planning including scoping, setting audit objectives and defining audit steps.
- Plans and executes IT audit work in conjunction with the annual audit plan.
- Performs detailed audits of general controls in a wide range of environments including mainframe, mid-range, cloud and client/server.
- Evaluates IT organization and administration practices, system development and maintenance procedures, system software and hardware controls, security and access controls, computer operations, environmental protection and detection, and backup and recovery procedures.
- Analyzes work papers and internal audit reports to ensure compliance with quality control standards and are properly backed up and stored in accordance with First American’s statutory archiving standards.
- Provides clear documentation and analysis of conclusions reached.
- Communicates control strengths and opportunities to the financial auditors, teaming with them to plan an effective and efficient integrated audit approach.
- Effectively deploys and supports the enhancement of proprietary audit tools. Participates in the successful introduction of new audit tools and methodologies to execute audit engagements effectively and efficiently.
Job Complexities
- Uses skills as a seasoned, experienced professional with a full understanding of industry practices and established policies and procedures
- Troubleshoots a wide variety of complex problems and identifies solutions within broad application of functional expertise
- Errors will have significant business and financial impact
Supervision Received or Extended
- No formal responsibility for the supervision of others but may provide functional advice or training to less experienced team members
Impact
- Works independently under broad supervision
- Ability to establish and maintain effective working relationships at the senior management level across functional groups and business units
Knowledge and Skills/Technology Used
- Experience auditing the information technology environment and related applications supporting asset management businesses and operations.
- Strong understanding of infrastructure (e.g., network, data center) and general system controls (e.g., change management, information security, business continuity planning, and system development lifecycle) and practical audit experience conducting risk assessments and executing audit programs
- Experience with risk assessment, control analysis, audit procedures and standards, in addition to, sampling techniques, risk components, and the internal framework of control
- Excellent written and oral communication skills
- Excellent analytical and creative problem-solving skills
- Self-motivated; self-starter
- Ability to manage multiple tasks, respond quickly to emergent problems, and focus both on long-range projects and immediate tasks
- Ability to establish and maintain effective relationships with management, external auditors and other control partners to analyze business risks and controls
- Building and use of data analytics to support audits, including use of Continuous Auditing (CA) or Continuous Monitoring (CM)
- Preferred Exposure or Experience to:
o Network Penetration or Red Team Assessments
o Cloud Computing Environment (AWS/ Azure)
o RPA/ Bot
o Oracle Financials
o Workday HR / Payroll
o Real-time Application Implementation Audits (Agile Audits)
Typical Education
- BA/BS in Business, Computer Science or Management Information Systems
- Master’s degree in a related field is a plus
Typical Range of Experience
- 5-7 years related experience
License or Certification
- CISA, CISSP, CISM, CPA, CA or CIA certifications a plus
- Knowledge and experience with COBIT, ITIL or ISO 9001 is recommended
Disclaimer
The above statements are intended to describe the general nature and level of work being performed by people assigned to this classification. They are not to be construed as an exhaustive list of all responsibilities, duties, and skills required of personnel so classified. All personnel may be required to perform duties outside of their normal work hours and/or responsibilities from time to time, as needed.
What We Offer
By choice, we don’t simply accept individuality – we embrace it, we support it, and we thrive on it! Our People First Culture celebrates diversity, equity and inclusion not simply because it’s the right thing to do, but also because it’s the key to our success. We are proud to foster an authentic and inclusive workplace For All. You are free and encouraged to bring your entire, unique self to work. First American is an equal opportunity employer in every sense of the term.
Based on eligibility, First American offers a comprehensive benefits package including medical, dental, vision, 401k, PTO/paid sick leave and other great benefits like an employee stock purchase plan.
