Senior IT Audit Specialist

Do you have a solid background in the field of I&IT auditing and risk management? Do you have effective interpersonal skills to build positive working relationships? Then consider joining the Treasury Board Secretariat's Ontario Internal Audit Division with the Ontario Public Service (OPS)! Our I&IT audit professionals work on diverse audit and consulting assignments spanning a broad range of I&IT areas across the Ontario Public Service. Our work is client-focused and directly contributes to improved business outcomes for our clients and the people of Ontario.

OPS Commitment to Diversity, Inclusion, Accessibility, and Anti-Racism:

We are committed to build a workforce that reflects the communities we serve and to promote a diverse, anti-racist, inclusive, accessible, merit-based, respectful and equitable workplace.

We invite all interested individuals to apply and encourage applications from people with disabilities, Indigenous, Black, and racialized individuals, as well as people from a diversity of ethnic and cultural origins, sexual orientations, gender identities and expressions.

Visit the OPS Anti-Racism Policy and the OPS Diversity and Inclusion Blueprint pages to learn more about the OPS commitment to advance racial equity, accessibility, diversity, and inclusion in the public service.

We offer employment accommodation across the recruitment process and all aspects of employment consistent with the requirements of Ontario's Human Rights Code. Refer to the "How to apply" section if you require a disability-related accommodation.

What can I expect to do in this role?

You will:

• plan, lead, coordinate and conduct complex I&IT audits and consulting assignments
• assess internal controls and processes in the areas of IT governance, systems under development, IT project management, IT service management, IT infrastructure and networking, cybersecurity and privacy
• provide technical expertise and advice on I&IT risk management and controls to support I&IT projects and business transformational initiatives
• prepare audit reports and communicate audit findings and recommendations

How do I qualify?

Technical Knowledge and Experience:

• You have demonstrated experience conducting a broad range of complex I&IT audits and consulting assignments
• You have knowledge and experience with generally accepted auditing standards, IT control frameworks and specialized auditing techniques to plan, lead and conduct IT and business audit engagements, consulting, advisory and special investigation assignments
• You have an understanding of current and emerging technologies (e.g. cloud computing, artificial intelligence) and associated risks across various I&IT areas including IT security (e.g. cybersecurity), I&IT governance, data governance, IT service management etc.
• You have knowledge of IT risk management methodologies to assess risk management practices and to provide advice to client management.
• You have knowledge of project management standards, best practices and frameworks to lead and conduct audits of IT and business transformation projects.

Communication Skills:

• You have written communication skills to develop audit reports, briefing materials and technical reports that are clear, and concise and effectively communicate important issues and recommendations to clients.
• You have strong oral communication skills to conduct client meetings, briefings and presentations to articulate risks/impact, audit findings, and recommendations to all levels of executives and audit committees.

Interpersonal Skills:

• You have relationship management skills to build and sustain relationships and establish trust and credibility with all levels of management including senior and executive management.
• You have influencing, negotiation and mediation skills to manage client expectations, and address and resolve contentious issues arising from audits and the acceptance of audit observations, current practices and proposed options to improve effectiveness and efficiency of processes and controls.
• You have consultation and negotiation skills to build and nurture relationships with internal and external stakeholders to influence decision-making related to IT strategy, programs or projects

Analytical and Problem-Solving Skills:

• You have the ability to interpret and apply legislation, regulations, OPS policies, directives, standards, governance and control frameworks to assess, and advise clients on compliance requirements.
• You have the ability to evaluate information from diverse sources to identify issues, perform root-cause/trend analysis and make recommendations to senior and executive management on risk mitigation strategies.

Computer Skills:

• You have demonstrated experience with/knowledge of current office automation tools (e.g. Microsoft Office 365, TEAMs, etc.) to support the execution of I&IT audit engagements.
• You have demonstrated experience in utilizing data analytics tools (e.g. IDEA, ACL, Excel and PowerBI) to analyze data, identify risks/trends and support the audit process.