Lennar Corp - Irving, TX
posted 16 days ago
Full-time - Senior
Irving, TX
Construction of Buildings
About the position
The IT Auditor conducts audits of the information technology control design and effectiveness in accordance with information technology & security, authoritative sources including the Lennar Enterprise Security Office corporate standards; Sarbanes Oxley (SOX); Control Objectives for Information and Related Technology (COBIT); National Institute of Standards and Technology (NIST); and/or International Organization of Standards (ISO). Manages audits, projects, activities, and remediation plans to mitigate information technology and security risks within LTS. Assesses the information technology control environment and recommends enhancements and improvements to control activities, measures, and routines.
Responsibilities
- Conducts internal, information technology audits and rigorous control self-testing programs to ensure controls are designed adequately and working effectively to mitigate information technology and security risks within agreed policies, procedures, standards and risk limits.
- Audits, assesses and ascertains that controls and processes are in place to ensure that information technology risks have been adequately managed and in line with business priorities.
- Serves as a subject matter expert on information technology policy, standards and framework and proactively bridges the gap between control requirements, technical issues and business risks.
- Proactively researches changes in the industry, information technology governance and external risk compliance landscape.
- Ensures information technology risk management practices are embedded in the enterprise and that systems and data criticality and sensitivity are defined.
- Constructs corrective action plans for resolution of control weaknesses and provides expert guidance on how to avoid and prevent similar situations in the future.
- Delivers key performance indicators on audit issue and control weakness closure rate. Conduct testing and validation of remediation action plans and enhancements to control routines.
- Engages the Enterprise Security Office as appropriate in support of security related control testing and remediation as warranted.
- Demonstrates effective working relationships with key stakeholders.
- Incorporates business strategy into decision making process; mentors less experienced associates on strategies.
- Takes ownership within area of expertise; provides guidance to others.
- Identifies opportunities to make improvements within their area of responsibility.
- Creates and presents implementation plans approved by senior leadership.
- Prioritizes work based on business drivers; takes ownership of changes in priority.
- Excellent communication skills, both verbal and written.
- Advanced understanding of business and IT strategy / processes in their area of expertise.
- Engages in discussion of complex business topics in assigned area and captures process activities and requirements.
- Understands impact of changes in the business.
- Other job duties as assigned.
Requirements
- Bachelor's Degree or Certification Required.
- 8+ years of technical audit and/or related governance experience with working knowledge of information technology governance, information technology quality assurance, and/or information security risk assessment.
- Demonstrated audit experience assessing information technology, cloud security and related compliance and control measures.
- Knowledge and experience auditing Information Technology and Cloud Security controls in accordance Sarbanes Oxley (SOX); Control Objectives for Information and Related Technology (COBIT); National Institute of Standards and Technology (NIST); International Organization of Standards (ISO), and/or other related authoritative sources and standards.
- Preferred CCSP - Certified Cloud Security Professional, and Microsoft Certified: Microsoft Azure Fundamentals & Solution Architect.
- Strong knowledge of Information Technology Infrastructure Library (ITIL) and Service Management principles.
- Knowledge of critical control environments & measures related to security architectures, systems and environments.
- Excellent communication and program management skills.
Benefits
- Healthcare (medical, dental, vision) and 401k matching.
- Paid Parental Leave.
- Associate Assistance Plan.
- Education Assistance Program.
- Up to $30,000 in Adoption Assistance.
- Up to three weeks of vacation annually.
- Generous Holiday, Sick Leave, and Personal Day policies.
- New Hire Referral Bonus Program.
- Significant Home Purchase Discounts.
- Unique opportunities such as the Everyone's Included Day.
