Under direction of Project Manager or Principal Auditor, plan audits, determine scope and develop project specific risk and controls matrices. Perform walkthroughs, design effectiveness assessments and operational effectiveness testing, document issues for inclusion in formal audit reports, and follow-up with management on agreed correct actions. Work in teams on technology and integrated business audits, and where assigned, to supervise junior members of staff.
As directed by Project Manager or Principal Auditor, plans audits, determination of scope and development of project specific risk and controls matrices. Conduct audits of Information Technology operations and practices to ensure compliance with policies, standards, procedures, laws and regulations, safeguarding of assets, and reliability and integrity of operating and financial information. Work as the IT audit specialist on integrated business audits. Effectively document assessment and testing results to ensure that conclusions, findings and recommendations are supported by sufficient and appropriate evidence and to audit department standards. Assist with assessing risks and recommending changes to improve IT controls, and to negotiate solutions and corrective action. Prepare input to the formal Audit Report and effectively communicate audit results to management. As requested and under supervision, to lead less complex audits or sections of larger audits.
Work as an integral member of the department to achieve departmental performance goals, which include completing the annual audit plan in a timely basis, within budget, and to defined standards and quality. Represent the department as a business partner, adding value and supporting company objectives. Be an ambassador for the department to maintain and enhance the standing of Audit Services and of its integral value to the business. Assist in mentoring other auditors as requested and to develop and share center of excellence expertise.
Performs other duties as assigned (no more than 5% of duties).
Five years of IT audit, IT risk and controls, hands-on IT infrastructure, or technical security control implementation and management expertise required.
Bachelor's Degree in Computer Science, Computer Engineering or relevant field (or equivalent additional experience) required.
CISA required or must be willing to obtain within first year.
Other professional certifications a plus e.g. CISSP, CISM, CIA.
Ability to travel approximately 10-25% locally (San Diego and Los Angeles), nationally and potentially internationally.
Valid California Driver's License required.
Internal Number: 18-2305
About Sempra Energy
Based in San Diego, Sempra Energy is a Fortune 500 energy services company with 17,500 employees, the Sempra Energy companies develop energy infrastructure, operate utilities, and provide related products and services to more than 31 million consumers worldwide.
Sempra Energy’s California utilities, San Diego Gas & Electric Co. and Southern California Gas Co., serve more than 20 million consumers. And its other businesses – Sempra U.S. Gas & Power and Sempra International – develop and operate critical energy infrastructure and provide gas and electricity services in North America and South America.