Position: Senior Cyber Security Auditor

Senior Cyber Security
Auditor (Audit Hiring
Event)
Department: Audit
Location:

Description
About the Role
The Audit Department is responsible for providing internal auditing services that include reviewing
business processes, systems, and operations, as well as examining tenants and contractor
records. Reporting to the Inspector General and the Board of Commissioners Audit Committee,
the Department's mission is to bring an independent, systematic, and disciplined approach to
evaluating and improving the effectiveness of internal control and risk management.
The Audit Department is looking for highly skilled individuals to join their team in support of the
mission - to enhance and defend the integrity of the Port Authority's programs and operations.
Reporting directly to the Manager the duties of this position are highly confidential and involve the
handling of sensitive documentation. The selected candidate is expected to maintain
confidentiality and discretion.

• The Senior Cyber Security Auditor will possess the following skills:
• Responsibilities
• Participate in the planning and performance of specific audits including developing the audit
• scope and the audit program.
• Conducting general controls reviews, system security audits, application reviews and pre-
• implementation reviews.
• Performing integrated reviews to evaluate both business applications and process.
• Perform risk assessments to determine the scope of the audit assignment.
• Executing the audit work including the gathering and analysis of required data and information.
• Preparation of workpapers including Teammate+ automated workpaper application and drafting
• reports summarizing the results of the audit, communicating audit results to auditee
• management, evaluating results of IS audit and system vulnerability tests and making
• recommendations for enhancements to procedures, controls, and administrative practices.
• Minimum Qualifications
• *Please note: If you have already submitted an application for this requisition, there is no
• need to submit a new application*

• Bachelor’s degree in Information Systems, Computer Science or related fields.
• 2 years of transferrable experience in the audit or information technology related
• field
• Demonstrated ability to exercise good judgement and discretion in handling
• confidential information.
• Desired Qualifications

• General understanding of risk-based auditing techniques, internal control
• practices, risk assessment or assurance to ensure effectiveness and
• accountability.
• Demonstrated ability to analyze functions, operations and business processes
• and identify solutions for improvement.
• Understanding of computer hardware, network, operating systems, and database
• concepts.
• Familiarity with one or more IT security and control frameworks such as COBIT,
• IIA GTAG, ISO 27000 and NIST.
• Knowledge of current ERP’s applications (SAP, PeopleSoft), operating systems
• (Windows, Linux), databases (Oracle, MS SQL) and vulnerability scanning tools.
• Proficiency of audit data analytics with tools such as Excel and ACL.
• Thorough understanding of systematic reviews to ensure effectiveness and
• accountability.
• Demonstrated project management, planning, organization, analytical,
• technical, and problem-solving skills.
• Demonstrated written and oral communication skills.
• Demonstrated ability to meet deadlines, work independently and prioritize work.
• Ability to interact effectively with internal staff at all levels and external business
• partners.
• Thorough working knowledge of Microsoft Office Suite applications.
• Professional certifications desirable: CISA, CRISC, CISSP, CISM