The Texas State University System (TSUS) invites applications for an Information Technology (IT) Auditor position within the Office of Internal Audit, Lamar Components, to primarily serve Lamar University, Lamar Institute of Technology, Lamar State College-Orange, and Lamar State College-Port Arthur. These campuses are member institutions of the Texas State University System, the oldest multi-campus system in Texas. The position reports to the Director, Office of Internal Audit, Lamar Components, who in turn reports to the Chief Audit Executive of the TSUS. For more information on the Office of Internal Audit, see https://www.tsus.edu/offices/Internal-Audit.html.
SENSITIVE SECURITY STATEMENT
This position is security-sensitive and thereby subject to the provisions of the Texas Education Code §51.215, which authorizes the employer to obtain criminal history record information.
INFORMATION ABOUT THE TEXAS STATE UNIVERSITY SYSTEM AND LAMAR CAMPUSES
To learn more about the Texas State University System or the Lamar campuses, please visit:
Screening of applications and nominations will begin immediately and continue until the position is filled. To be considered for the position, applicants must complete and submit a State of Texas employment application found at the following link:
The Texas State University System is a tobacco-free/drug free workplace.
A criminal history background check is required for finalist(s) under consideration for this position.
The Texas State University System is an “at will” employer.
If hired, you will be required to complete the federal Employment Eligibility Verification form, I-9. You will be required to present acceptable, original documents to prove your identity and authorization to work in the United States. Information from the documents will be submitted to the federal E-Verify system for verification.
THIS POSITION WILL REMAIN OPEN UNTIL IT IS FILLED.
The Texas State University System is an Equal Opportunity Employer.
Plans and performs IT audits to:
assess whether internal controls over information resources and related technology are adequate to ensure that confidential data (student, academic, financial, and operational) is protected from unauthorized use, access, or manipulation;
determine whether the information technology infrastructure is adequately protected from intentional or unintentional access, loss, damage, or destruction;
determine whether the governance, risk management, and control processes over information resources and related technology facilitate the production of reliable financial, academic, and operating information;
identify the effective extent to which information resources and related technology can be recovered in support of the continuity of operations in the event of a business disruption; and
measure the level of compliance involving information resources and associated technology with TAC 202, FISMA, NIST, FERPA, HIPAA, PCI, and other applicable state and federal requirements, industry standards, and best practices.
Identifies risks, develops recommendations to mitigate risks, prepares organized, accurate and competent work papers that clearly document and support conclusions regarding audit objectives, and facilitates the communication of audit results through preparing written draft reports and making oral presentations to management.
Performs special projects and consulting activities as needed.
Assists with the administration of the Internal Audit file server.
Engages in frequent contact with other Office of Internal Audit personnel, University personnel, TSUS personnel, and personnel at other state agencies.
Performs other related duties as assigned.
Working Conditions: Normal office environment; occasional daytime travel between office and campuses; less than five percent (5%) overnight travel (training, conferences, etc.).
Bachelor's degree with a major in management information systems, computer science, accounting, or related financial or information technology discipline orBachelor’s degree in another field with three (3) years of experience in information technology/systems or management information systems may be substituted.
Certified Information Systems Auditor (CISA), Certified Internal Auditor (CIA), Certified Information Systems Security Professional (CISSP), Certified in Risk and Information System Control (CRISC) or Certified Public Accountant (CPA).
Additional Desired Qualifications:
Advanced degree in information systems, accounting, or related disciplines.
A minimum of four (4) years IT auditing experience or related industry experience.
Required Experience and Skills:
Strong analytical, organizational, written/verbal communication, interpersonal, and relationship building skills.
Proven ability to work with all levels of management and staff.
Ability to converse with IT personnel and communicate technical information to non-technical audiences.
Strong project management skills.
Proficiency with the Microsoft Office productivity suite.
Proven ability to work independently and as part of a team.
Working understanding of fundamental information technology control concepts.
Ability to learn and assimilate new information systems and applications quickly.
Experience auditing information technology in higher education or in Texas state government.
Experience in application control audits and a familiarity and understanding of management information systems.
Versed in the application of professional auditing standards.
Working knowledge of Texas statutory requirements applicable to public universities.
Working knowledge of NIST 800.53 Information Technology Controls.
Exposure to Texas Administration Code (TAC) 202.70 - 202.76.
Familiarity and experience in using TeamMate or similar electronic work paper system.
Working knowledge of Active Directory.
Experience with Banner ERP.
Working knowledge of server management.
Experience in evaluating multiple server operating systems (Windows and Linux environments).
Exposure to computer forensics and analysis.
Experience using data analysis software (ACL, IDEA, TeamMate Analytics, etc.).
Familiar with relational and non-relational database administration.
Experience with Oracle and/or MS SQL.
Experience writing and reading SQL scripts to extract data.
Experience in developing reports for data extracts and ‘continuous monitoring’.
Experience in network management controls encompassing both wired and wireless environments, including all associated devices (firewalls, routers, switches, etc.).
Familiarity with various network management monitoring applications.
Familiarity with controls over website development and content management systems.
Other relevant industry experience.
Additional Salary Information: SALARY AND BENEFITS:
Salary is commensurate with the successful applicant’s experience and qualifications. Customary and usual state employee benefits apply, including but not necessarily limited to retirement (TRS), health insurance (ERS), holidays, annual and sick leave.
About Texas State University System
The Texas State University System (TSUS) is Texas' first university system. Established in 1911, the TSUS supports seven institutions (Lamar University, Sam Houston State University, Sul Ross State University, Texas State University, Lamar Institute of Technology, Lamar State College Orange and Lamar State College Port Arthur) by providing centralized support such as legal counsel, accounting, audit, academic program planning, contract administration, government relations and communications services. The TSUS is the third largest of the six university systems in Texas, with enrollment exceeding 86,000 students in the Fall 2019 semester. The TSUS is governed by a nine-member Board of Regents appointed by the governor. A chancellor selected by the Board of Regents is the chief executive officer of the TSUS.