Job Summary: 

Responsible for execution of assigned IT SOX testing, IT operational audits, administration of thedepartment audit management system, and development of audit staff. Under thedirectionof the Director,provide an independent and objective opinion on the overall effectiveness and efficiency of the company’s system controls in mitigating business risks to achieve NRG’s strategy and performanceobjectives.Provideadditionalassurance services as requested by the Audit Committee of the Board of Directors orSenior Management. 

Essential Duties/Responsibilities: 

• Perform IT SOX control testing and review,document work papers and issues, system scoping, andcoordinate with external auditors. 

• Manage the effective andtimelyexecution of IT internal audit projects end to end as assigned from theNRG internal audit plan, including all phases of the audit lifecycle. 

• Assist the Director in the management, supervision, training, and development of IT audit staff. 

• Participatein audit department planning activities including scheduling testing and staffing, budgetpreparation, risk assessment, and other IT audit-related duties as needed. 

• Plan testing activities throughout the year and regularly report on status to Internal Audit management andother stakeholders. 

• Maintaina thorough understanding of IIA and ISACA professional auditing standards and best practiceaudit procedures and techniques. 

• Proactively interact with all levels of management to gather information, resolve problems, and makerecommendations for process and control improvements. 

• Assistdepartment with the management of Audit Board, data analytics and AI initiatives, departmentSharePoint, and system access. 

Working Conditions: 

• Hybrid working environment. 

• Some overtime is required as special projects arise. 

• Travel as needed. 

MinimumRequirements: 

• Bachelor’s degreerequired, with a focus in information systems or computer science, preferred, and four ormore years of IT Audit or relevant experience. 

• Must have extensive knowledge of IT general controls, cyber security, data privacy, IT operations, andgovernance. 

• Proficiencyin Sarbanes-Oxley compliance, advanced security concepts, emerging technologies, systemimplementations,and project management. 

• Excellent, proven communication skills required, ability to work and communicate effectively with all levelsof clients including technical and non-technical clients, as well asworkwith teams cross-functionally. 

• Robust qualitative skills, includingdemonstratedability to write audit reports with minimal rework, provenability to handle confidential and sensitive matters, capability to handle multiple assignments, meetdeadlines, and work under pressure in a fast-paced environment. 

• Strong analytical skills and ability to problem solve and consider/develop alternative solutions. 

• Motivated to work independently and complete responsibilities with little supervision yet work well andpromote a team-oriented culture. 

• Highly proficient with Microsoft Office applications, audit management systems, and other auditing anddata analytics tools. 

• Demonstratedattention to detail; this is a working manager position. 

• Demonstrateda high degree of ethics and astrong senseof business judgment and able tooperatewithinNRG’s published core values.

Preferred Qualifications: 

• Certificationrelativeto the practice of IT security or auditing in one or more of the following is preferred:CISA, CISSP, CISM. 

• Experience working within a NERC CIP, PCI, NIST, COBIT, ITIL, and/or other leading business and ITcontrols frameworks. 

• Demonstrable hands-on skills or knowledge in various technology areas such as key Information SecurityTopics (Identity and Access Management, Authentication Services,DevSecOps, Encryption etc.), OperatingSystems (UNIX/Linux, Windows), Cloud Technologies (AWS, Azure, Google Cloud, etc.), NetworkingTechnologies (Software Defined Networking, Firewalls, etc.), Database Systems (Oracle, SQL Server, etc.),Data Analytics technologies (PowerBI, Tableau, etc.), and Infrastructure (servers, containers etc.). 

• Experience in application development, IT project management, system and database administration, webapplication design and development preferred. 

• Experience working within a COSO / risk-based framework is preferred. 

• Ability to manage anAudit Boardenvironment preferred. 

• Working knowledge ofPowerBiutilizationis preferred. 

• Experience testing Applications, Key Reports, and Interface controls in a SOX environment is preferred. 

Here are some highlighted perks you should ask us about:  

• Paid holidays and flexible paid time away 
• Employee Discounts 
• Medical/dental/vision/life coverage
• 401(k) + Employer Match 
• Employee Resource Groups 

WORKING CONDITIONS:   

This job operates in a professional office environment. This role routinely uses standard office equipment such as computers, phones, photocopiers, filing cabinets and fax machines. 

SAFETY: 

We enforce a safety culture whereby all employees have the responsibility for continuously developing and maintaining a safe working environment.  Each new employee is responsible for completing all training requirements.  Additionally, the employee must accept they have responsibility for maintaining the safety of themselves, their co-workers, and the public.  Employee must adhere to all written and verbal instructions, promptly report and correct all hazards or unsafe conditions, question non-standard operations or unmitigated hazards, and provide feedback to management on all safety issues. 

If you are an active Vivint employee, please apply through Workday by searching "Find Jobs".