Senior IT Auditor

* This position requires candidates to be within commuting distance of Uncasville, Connecticut.

Incumbent assists in developing and executing comprehensive audit programs that are responsive to the operational, financial, regulatory and internal control risks across all enterprises of the Mohegan Tribe; assists in the coordination, execution, monitoring and reporting of compliance with GAAP, GAAS statutes, regulations, policies and the provisions of the Sarbanes‑Oxley Act. Responsibilities include conducting general computer controls and information security audits, providing advisory services to enhance technology projects while supporting information security principles, and compliance with regulations across a broad range of systems and platforms.

• Performs all activities related to information technology and security audits of varying complexity, including ITGC reviews for SOX compliance, Minimum Internal Control Standard audits, payment card industry (PCI) compliance audits, network infrastructure reviews, database, application reviews, etc.
• Maintains detailed internal control documentation for purposes of ongoing compliance with Sarbanes‑Oxley including monitoring changes/updates to documentation, performing annual testing, and coordinating with external auditors.
• Documents/Updates process flows and narratives by process area. Conducts test procedures, compiles audit findings, documents and communicates remediation plans and completes work papers as needed for IT and regulatory audits, including SOX-404.
• Executes audit procedures, analyzes evidence, reaches conclusions, identifies issues, and recommends decisions for complex judgmental issues related to the overall IT risk environment. Consults with others in the company, as necessary, on complex issues.
• Prepares audit reports for supervisor concerning scope of audit, audit results and/or conditions found, and makes recommendations for improvement.
• Drafts clear and concise written communications to supervisor, including recommended actions for stakeholders to address information security vulnerabilities and other technology risks.
• Assists as an information security subject matter expert for the entire internal audit function at all properties.
• Performs analysis by developing data analytic routines and queries using Excel, IDEA and other relevant analysis tools to communicate meaningful results.
• Assists in –supporting IT audit work for all Mohegan Tribe enterprises and partners with external parties responsible for penetration testing and other infrastructure‑related projects.

Performs other duties as assigned

Maintains confidentiality of information and reports

Complies with privacy and security standards of the Health Insurance Portability and Accountability Act (HIPAA)

Represents The Mohegan Tribe in a professional and courteous manner at all times

Regularly attends and is punctual for work

This position reports to the IT Audit Director

Directs staff as assigned

• Extensive knowledge of Generally Accepted Accounting Principles (GAAP), Generally Accepted Auditing Standards (GAAS), and Sarbanes–Oxley implementation as well as fundamentals of COSO, COBIT and financial statement assertions and other gaming regulatory requirements
• Ability to look at the current state of information security within a business unit and identify emerging trends and risks in information security
• Ability to monitor and develop strategies and procedures in compliance with IIA standards and recommend improvements with audit efficiency
• Well-developed analytic, qualitative and quantitative reasoning skills
• Ability to deliver assignments on time and by required deadline dates
• Excellent interpersonal and presentation skills
• Demonstrated written and verbal communication skills

• Bachelor’s Degree in Information Systems, Computer Science, Business Administration, Finance or Accounting
• CISA, CISSP or CIA (or other related certifications) required, or must be obtained within the first year of employment, and maintained thereafter
• Minimum of five (5) years of IT Audit experience, including work in the Professional Services sector, or three (3) years of IT Audit experience in the gaming industry
• Experience with IDEA or other data analytics software
• Proven experience with the integrated audit approach
• Experience in collaborating with all levels of an organization’s management team

• Must be able to be licensed by the State of Connecticut, Division of Special Revenue and other jurisdictions, as required
• No felony convictions or misdemeanors involving moral turpitude or issues of integrity
• Ability to travel to other business locations as necessary
• Lives within commutable distance to Connecticut Mohegan Sun Office for periodic office work and training.