Job Description
Welcome to the intersection of energy and home services. At NRG, we're driven by the idea of a smarter, cleaner, more connected future-and the possibilities that will bring to the world and to the 7.3 million customers we serve.
Vivint Smart Home, an NRG-owned company, is a leading smart home company in the United States, dedicated to redefining the home experience with intelligent products and services. We find purpose in proactively protecting and keeping our customers connected to home, no matter where they are. Join the Smart Home team to create smarter, safer and more sustainable homes. More information is available at www.nrg.com or www.vivint.com. Connect with NRG and Vivint on Facebook, Instagram, LinkedIn and X.
Responsible for execution of assigned IT SOX testing, IT operational audits, administration of the department audit management system, and development of audit staff. Under the direction of the Director, provide an independent and objective opinion on the overall effectiveness and efficiency of the company's system controls in mitigating business risks to achieve NRG's strategy and performance objectives. Provide additional assurance services as requested by the Audit Committee of the Board of Directors or Senior Management.
Essential Duties/Responsibilities:
- Perform IT SOX control testing and review, document work papers and issues, system scoping, and coordinate with external auditors.
- Manage the effective and timely execution of IT internal audit projects end to end as assigned from the NRG internal audit plan, including all phases of the audit lifecycle.
- Assist the Director in the management, supervision, training, and development of IT audit staff.
- Participate in audit department planning activities including scheduling testing and staffing, budget preparation, risk assessment, and other IT audit-related duties as needed.
- Plan testing activities throughout the year and regularly report on status to Internal Audit management and other stakeholders.
- Maintain a thorough understanding of IIA and ISACA professional auditing standards and best practice audit procedures and techniques.
- Proactively interact with all levels of management to gather information, resolve problems, and make recommendations for process and control improvements.
- Assist department with the management of Audit Board, data analytics and AI initiatives, department SharePoint, and system access.
- Hybrid working environment.
- Some overtime is required as special projects arise.
- Bachelor's degree required, with a focus in information systems or computer science, preferred, and four or more years of IT Audit or relevant experience.
- Must have extensive knowledge of IT general controls, cyber security, data privacy, IT operations, and governance.
- Proficiency in Sarbanes-Oxley compliance, advanced security concepts, emerging technologies, system implementations, and project management.
- Excellent, proven communication skills required, ability to work and communicate effectively with all levels of clients including technical and non-technical clients, as well as work with teams cross-functionally.
- Robust qualitative skills, including demonstrated ability to write audit reports with minimal rework, proven ability to handle confidential and sensitive matters, capability to handle multiple assignments, meet deadlines, and work under pressure in a fast-paced environment.
- Strong analytical skills and ability to problem solve and consider/develop alternative solutions.
- Motivated to work independently and complete responsibilities with little supervision yet work well and promote a team-oriented culture.
- Highly proficient with Microsoft Office applications, audit management systems, and other auditing and data analytics tools.
- Demonstrated attention to detail; this is a working manager position.
- Demonstrated a high degree of ethics and a strong sense of business judgment and able to operate within NRG's published core values.
Preferred Qualifications:
- Certification relative to the practice of IT security or auditing in one or more of the following is preferred: CISA, CISSP, CISM.
- Experience working within a NERC CIP, PCI, NIST, COBIT, ITIL, and/or other leading business and IT controls frameworks.
- Demonstrable hands-on skills or knowledge in various technology areas such as key Information Security Topics (Identity and Access Management, Authentication Services, DevSecOps, Encryption etc.), Operating Systems (UNIX/Linux, Windows), Cloud Technologies (AWS, Azure, Google Cloud, etc.), Networking Technologies (Software Defined Networking, Firewalls, etc.), Database Systems (Oracle, SQL Server, etc.), Data Analytics technologies (PowerBI, Tableau, etc.), and Infrastructure (servers, containers etc.).
- Experience in application development, IT project management, system and database administration, web application design and development preferred.
- Experience working within a COSO / risk-based framework is preferred.
- Ability to manage an Audit Board environment preferred.
- Working knowledge of PowerBi utilization is preferred.
- Experience testing Applications, Key Reports, and Interface controls in a SOX environment is preferred.
Here are some highlighted perks you should ask us about:
- Paid holidays and flexible paid time away
- Employee Discounts
- Medical/dental/vision/life coverage
- 401(k) + Employer Match
- Employee Resource Groups
WORKING CONDITIONS: This job operates in a professional office environment. This role routinely uses standard office equipment such as computers, phones, photocopiers, filing cabinets and fax machines.
SAFETY: We enforce a safety culture whereby all employees have the responsibility for continuously developing and maintaining a safe working environment. Each new employee is responsible for completing all training requirements. Additionally, the employee must accept they have responsibility for maintaining the safety of themselves, their co-workers, and the public. Employee must adhere to all written and verbal instructions, promptly report and correct all hazards or unsafe conditions, question non-standard operations or unmitigated hazards, and provide feedback to management on all safety issues.
If you are an active Vivint employee, please apply through Workday by searching "Find Jobs".
If you are an active Vivint employee, please apply through Workday by searching "Find Jobs".
|