Senior IT Auditor

A career at Mary Kay encompasses so many beautiful things, starting with our mission of enriching the lives of women and their families around the world. And that’s a career you can love. 

Dallas, TX, USA

Mary Kay

Enriching the lives of women and their families around the world.

keywords: analysis,planning,performance,management,audit,analysis,reporting,software development,management,consulting,assist,communication,experience,travel,education,analysis,performance,culture,organization,assist

Full Time

Competitive Compensation Package

Overview: <ul> <li>Accountable for planning, performing and documenting multiple Internal Audit reviews of information systems as well as financial and operational controls.</li> <li>Provides Mary Kay management with an independent examination of the adequacy of computerized financial and operating policies, procedures and controls.&nbsp; These examinations may identify areas and methods for improvement resulting in recommendations to promote efficiency and cost savings.</li> <li>Will perform audits on cloud, network security, and infrastructure controls.</li> <li>Will use ACL Analytics or other analytic software skills to develop and support custom analytics.</li> </ul>
Responsibilities: <ul> <li>Performs information systems audits by reviewing and analyzing system configurations, Company records, procedures, and documentation related to computerized accounting, financial, and operational systems. These audits may involve departments with or without written policies and procedures. Utilizes judgment to determine whether computerized systems of financial and operating controls are functioning properly and are in compliance with good business practices and if established policies and procedures are adequate.</li> <li>Works closely with key stakeholders to understand processes. Utilizes ACL and/or programming languages (e.g., Python, SQL or similar) in computer assisted audit techniques to audit large datasets identifying exceptions, irregularities or trends.</li> <li>Prepares concise reports on examinations and findings which detail areas examined, areas needing improvement and measures required for corrective action. Drafts reports and memos for review by management and sends drafts to operation management for review and comment.</li> <li>Responsible for developing specific audit program steps, audit work plan, and specific audit tests for departments or areas with no prior audit lead files, workpapers, audit programs, history files , or policies and procedures. Provides suggestions for areas to be included in the Internal Audit departments annual audit plan.</li> <li>Participates in meetings with all levels of management to provide information regarding the implementation of accounting or operational controls to safeguard the integrity of computerized systems.</li> <li>Assists external auditors on interim and annual basis to assure complete, accurate records and adequate internal controls in compliance with financial reporting requirements.</li> <li>Provides their expertise and experience to business projects in a consulting capacity in&nbsp;order to define the optimal end solution.</li> </ul>
Requirements: <p><strong>Experience:</strong>&nbsp;&nbsp;5+ years&rsquo; experience in a global organization (private or public) or a public accounting firm</p> <p><strong>Education:&nbsp;&nbsp;</strong>Bachelor/University Degree with a focus on&nbsp;Computer Science, Accounting or Business Administration with emphasis in systems required</p> <p><strong>Certifications Preferred:&nbsp;</strong>CISA, CISSP, CCAK</p> <p><strong>Additional Skills &amp; Abilities</strong></p> <ul> <li>Must have a strong working knowledge of the Control Objectives for Information and Related Technology framework (COBIT) and Information Technology Infrastructure Library (ITIL), and the Committee of Sponsoring Organizations (COSO) of the Treadway Commission&rsquo;s framework.</li> <li>Intermediate understanding of Microsoft Suite including Excel, PowerPoint, Outlook and Word. Experience in ACLGRC preferred. Ability to demonstrate an understanding of Company systems, how transactions are processed and a technical understanding of how multiple systems interface/interact. Documents this understanding using technical system flow charts.</li> <li>In addition must have an awareness of good security and privacy practices in end user computing, networking, and software development. Knowledge of Payment Card Industry Data Security Standards (PCI DSS) is beneficial.</li> <li>Requires strong knowledge of Microsoft Windows Server 2008 or newer based client server application architectures utilizing Microsoft SQL Server 2008 and newer as well as Oracle database management systems. Also working knowledge of Sun Solaris and Redhat Unix/Linux based systems, SharePoint and .NET are required.</li> <li>A clear understanding of cloud computing services and deployment architectures.&nbsp; Additionally, experience performing security assessments and audits within cloud environments (AWS, GCP, MS Azure, Oracle) is strongly preferred. &nbsp;&nbsp;&nbsp;</li> <li>Must also have intermediate knowledge of a modern object oriented programming language (such as Python) and/or SQL or similar programming language which can be used to perform data analysis.</li> <li>Ability to perform audits of computerized systems including knowledge of programming and systems design lifecycle frameworks such as (Waterfall and Agile.) Must be able to analyze design of computerized systems including flowcharting, programming, and definition of functional requirements in order to conduct pre-installation reviews of internally developed or purchased computerized systems.</li> <li>&nbsp;Experience auditing, administering or implementing PeopleSoft Financials/HR and/or JDE 9.1 is preferred.</li> <li>Must have excellent written and oral communication skills to effectively secure information from IST, domestic and international management and other departments during audits of computerized systems. Must be able to organize and succinctly explain deficiencies, risks, and recommendations to senior management in understandable and non-technical language.</li> <li>Must be willing and able to travel and examine international subsidiaries where new or revised computer information systems have been installed. Must be able to assist in audits of international subsidiaries including both operational and financial reviews. Travel potentially up 10%, although individual trips may be of several weeks&rsquo; duration.&nbsp;</li> <li>Hybrid work environment, must be able to be in the office 2 days per week.</li> </ul>