Staff Auditor, Technology
Consultant, Technology Audit Comcast Assurance and Advisory Team
The Comcast Assurance and Advisory Team (CAAT) is a partner to Comcast's individual businesses including Comcast Cable and NBCUniversal. CAAT performs projects (engagements) year-round to help these groups understand and manage risks to their business and technology. CAAT is a diverse group looking for strategic thinkers and analytical problem-solvers who have a strong desire to grow their careers within a world-class organization. CAAT promotes a culture of integrity, encourages professional development, and provides career path options both within the CAAT department and into Comcast's various business units.
The Consultant participates throughout all stages of an audit or advisory engagement, demonstrating professional curiosity and eagerness/aptitude to rapidly learn new skills. Consultants are able to gain a deep and insightful understanding of internal controls and risk management processes while learning about industry standards and regulatory frameworks and applying to real business risk scenarios. Consultants will build professional relationships with internal and external stakeholders through effectively communicating information to senior management, and exemplifying the highest degree of trust and integrity by continually upholding the principles of professional standards.
The Consultant's primary responsibilities will be focused on executing engagements covering several areas, including:
-Information Security and Privacy
-Systems Development and Change Management
-IT Portfolio, Program, and Project Management
-Governance and Strategy
-Business Continuity Management and Disaster Recovery
-Emerging Technologies (e.g., Cloud, IoT)
-Network Operations (e.g., performance and capacity management)
Consultants are active members of the engagement team throughout each phase (i.e., planning, execution, reporting). With our quarterly engagement cadence, Consultants gain broad exposure to our businesses and processes through performance of the following responsibilities:
-Operates within a team or independently to conduct audit projects across technology areas, which may cover business units from Comcast Corporate, Comcast Cable, and NBCUniversal. Out-of-town travel approximately 25-35%.
-Planning: Assists the team in identifying the project scope, which includes researching background information, assessing risks, and identifying scope areas. Participates in presenting project plan to CAAT and/or Business Leadership.
-Execution: Works within assigned scope area to develop and document lines of inquiry and testing procedures. With manager oversight, interacts with all levels of management and Company employees to fully investigate scope area. Performs testing and works with team identify audit findings and recommendations.
-Reporting: Communicates findings by assisting team in developing an Audit Report, which includes recommendations and action plans developed with Business Management. Participates in presenting the Audit Report to CAAT and/or Business Leadership.
-Development: Uses resources available to develop audit and business skills. Identifies opportunities for improvement to audit methodology, tools, and training. Actively participates in CAAT, Comcast, and other external community activities and service.
-Conducts interviews, performs controls testing, and documents results.
-Proactively pursues additional industry and business knowledge through training, continuing education, and certifications.
-Evaluates procedures, system controls, security measures, and verification procedures. Benchmarks and assesses controls in 'non-standard' IT Audit areas including Asset Management, and Operational and Incident Management.
-Identifies audit findings and drafts recommendations with management.
-Participates in planning meetings with Internal Audit management and Company management to assess risks across a variety of technologies including operating systems, databases, financial and operational processing applications, and network devices.
-Assists in the preparation of planning meetings with Internal Audit management and company management to assess risks across a variety of technologies including Windows and Unix operating Systems, databases, financial and operational processing applications, and network devices.
-Creates audit reports that summarize and prioritize noted control gaps into executive communication points.
-Conducts procedures, system controls, security measures, and verification procedures.
-Reviews, documents, and clearly communicates control gaps, the associated risk(s) and recommendation(s) through written reports and presentations.
-Ability to benchmark and assess controls in 'non-standard' IT Audit areas including Asset Management, and Operational and Incident Management.
-Operates financial enterprise management software packages.
-Demonstrates a consistent, strong work ethic and leads by example on audit projects.
-Consistent exercise of independent judgment and discretion in matters of significance.
-Regular, consistent and punctual attendance. Must be able to work nights and weekends, variable schedule(s) as necessary.
-Other duties and responsibilities as assigned.
Educational, experience, and skill requirements:
-Bachelor's Degree or Equivalent in Management Information Systems (MIS), Computer Science, Information Security, Accounting / Finance, or a related discipline with solid academic credentials.
-Generally requires 2-5 yearse experience
-1-3 years of experience in IT audit, consulting, compliance is preferred.
-Experience with identifying risks and controls in regards to various IT related areas (e.g., application, operating system, database, and network).
-Knowledge of and experience with fundamental IT General Controls (e.g., user administration, change management, backup and recovery, program development) concepts and principles preferred.
-Familiarity with Technology risk and control assessment frameworks preferred (e.g., COSO, COBiT, ITIL, PMBOK and ISO 27000).
-Professional certification a plus (e.g., CISA, CIA, CPA, CISSP, ITIL).
-Proficient in use of Microsoft Office suite (e.g., Excel, PowerPoint, Visio).
-Demonstrated ability to work in a complex, dynamic, and fast-paced environment with strong inherent project execution skills, including: prioritizing tasks, balancing workload between multiple projects, anticipating next steps, adapting to changing situations and project scope.
-Willingness and genuine desire to tackle new areas and consistently challenging topics.
-Able to quickly grasp complex subject matter (both technical and business processes) and apply strong analytical skills and business orientation to assessing processes, risks and controls.
-Strong interpersonal skills required, including: written and verbal communications, willingness to assist in areas outside of direct assignments when necessary, and commitment to self-improvement and completion of team objectives.
Comcast is not accepting unsolicited assistance from search firms for this employment opportunity. All resumes submitted by search firms to any employee at Comcast via-email, the Internet or in any form and/or method without a valid written Statement of Work in place for this position from Comcast HR/Recruitment will be deemed the sole property of Comcast. No fee will be paid in the event the candidate is hired by Comcast as a result of the referral or through other means.
Comcast is an EOE/Veterans/Disabled/LGBT employer