This role will be responsible for performing individual internal audit projects, as part of the total internal audit plan. This includes developing internal audit scope and testing procedures, performing internal audit procedures, and preparing internal audit reports reflecting the results of the work performed. Additionally, the Internal Auditor performs follow-up on the status of outstanding internal audit issues and assists Internal Audit management with periodic reporting to the Audit Committee. The successful candidate may often direct and review the work performed by other internal audit personnel.

Qualifications:

• Bachelor’s degree in Accounting or Finance; CPA or CIA designation
• Three to five (3-5) years of auditing, public accounting and/or private industry experience with knowledge of accounting, finance and internal control areas
• Strong knowledge of MS Office Software (Word, Excel, PowerPoint, Outlook)
• Prior industry experience in collections or customer service call center and back-office environments or banking is a plus
• Experience in planning and performing first-time through / initial audits is a plus
• Must be available to travel at least 50%

GC Services L.P. offers a competitive salary and benefits package including 401K and tuition reimbursement. 

For immediate consideration, please e-mail a cover letter and resume with salary history and requirements to hr@gcserv.com.   EOE

IS&T has been engaged by a client to locate a System Security specialist.  This is a full time position located Westheimer near Beltway 8, Houston.  CISSP certification required.

Responsibilities:

• Develops, evaluates and manages systems security across the enterprise.
• Areas of concentration include account management, password auditing, network based and Web application based vulnerability scanning, virus management and intrusion detection. 
• Requires technical expertise in system administration and security tools, combined with the knowledge of security practices and procedures.
• Assists in the development and implementation of security policies and procedures (e.g., user log-on and authentication rules, security breach escalation procedures, security auditing procedures and use of firewalls and encryptions routines).
• Prepare status reports on security matters to develop security risk analysis scenarios and response procedures. 
• Enforces security policies and procedures by administering and monitoring security profiles, reviews security violation report and investigates possible security exceptions, updates, and maintains and documents security controls.
• Involved in the evaluation of products and/or procedures to enhance productivity and effectiveness.
• Provides direct support to the business and IT staff for system security related issues. Educates users on systems security standards and procedures.
• Must have broad technical knowledge of network operating systems (e.g.; UNIX, NT).

Working knowledge in the following areas and/or types of hardware/software:

• Cisco Firewalls
• Juniper
• Blue Coat
• Alert Logic IDS
• Centralized logging
• ISO/IEC 17799:2005

If you or someone you know may be interested, call or email a resume at your convenient.

Renee Coty

IS&T Staffing

(713) 231-2017 Direct

(713) 622-3443 Main

(713) 622-3633 Fax

www.IS-T.net

renee@is-t.net

• Maintain understanding of business processes auditing.
• Thorough discussions with clients to identify potential auditable activities and changing risk profiles. 
• Actively communicates in a professional manner with individuals subject to audit, monitors client expectations, work with clients on identified issues for acceptable and feasible solutions.
• Leads and participates in opening and closing conferences with clients, to ensure audit focus and priority is understood and accepted by audit clients. 
• Develops the Internal Audit Plan (the Plan) with the management team of the Department. Utilizes risk methodologies in developing the audit as well as identifying project based risk factors. 
• Provides consultation to financial, operational and regulatory audit teams to ensure system risks are appropriately considered in the planning process.
• Ensures consistent adherence to defined departmental audit processes. 
• Coordinates planning efforts, facilitating a collaborative and team based planning approach.  Shares knowledge, leading practices and ideas to ensure the success of the project and development of staff.
• Provides IT training and expertise to financial, operations and regulatory audits to ensure execution of systems based control testing.
• Reviews work programs, control questionnaires and work papers on a real-time base, as work is completed by the engagement team. 
• Provide supervisory support to the assigned audit senior, providing substantive coaching and development to team members. 
• Ensures projects are completed within budget time.  May occasionally perform work on complex or high risk audit areas. 
• Applies creativity and ingenuity to the audit process to ensure efficiency in audit execution.  Prepares reports of findings to management. 
• Ensures the review and evaluation of personnel performance following each significant engagement.
• Perform quality assurance reviews as requested by reviewing work-papers and audit reports prepared by peers, ensuring compliance with department guidelines and IIA standards. Communicates on an ongoing basis with department leadership on project status, issues resolution, and resource needs. 
• Assists in the preparation of quarterly status reports, summarizing the results of audit findings, to management and the Audit Committee of the Board of Directors.

• Bachelor’s degree required. Management Information Systems Degree, or related degree.
• The chosen candidate will have 10 or more years of information technology internal auditing, information systems or equivalent public accounting experience.
• Certified Information Systems Auditor (CISA) or Certified Internal Auditor (CIA), or Certified Information Systems Security Professional (CISSP) preferred.
• Must have strong knowledge of IT principles and auditing standards.  Overall understanding of COBIT and working knowledge of ACL, IDEA, or other related auditing tools. 
• Experience with SAP and SANS preferred.
• Advance skills in Microsoft Office

  For more information contact

Denise Bradford

dbradford@truenorth-us.com

direct 210-798-5888 ext 107

• Demonstrate excellent communication skills, both written and verbal

• Assist in planning the scope of assigned audits including audit procedures to be used

• Assist in the preliminary survey of operations, functions or activities and gather information on key business risks

• Evaluate the adequacy of the controls designed to manage risks

• Use standard audit techniques to obtain, analyze and appraise data, transactions and records as a basis for providing an objective opinion on the performance of the business activity and effectiveness of key risk management activities

• Prepare organized, accurate and competent work papers ensuring that documentation supports the conclusions regarding audit objectives

• Report audit findings, obtain action plans on audit issues and engage in dialogue with management as needed

• Assists with development of the annual risk assessment and audit plan

• Assists independent auditors during the annual external audit

• All other duties as assigned
  

1 year internal audit experience or banking experience required

Preferred candidate will possess strong technical skills including the use of current database and report writing tools.

We are proud to be an EEO/AA employer M/F/D/V. We maintain a drug-free workplace and perform pre-employment substance abuse testing. 

Please visit our website at www. woodforest.com job opportunities under careers to apply for this position.

Qualifications:

• Understanding of internal control concepts and experience in applying them to plan, perform, manage and report on the evaluation of various IT processes and applications
• Demonstrate sound knowledge of IT and IT control concepts leading various types of IT audits
• Understanding of internal auditing standards, COSO, COBIT and risk assessment practices
• Knowledge of IT auditing principles and tools to identify, analyze and report on IT control and operational issues
• Experience with general computer controls and application controls
• Skill in collecting and analyzing complex data, evaluating information and systems, and drawing logical conclusions
• Strong knowledge of segregation of duties and its relation to risk and internal controls
• System and process flow documentation skills
• Awareness of accounting business processes
• Strong written and verbal communication skills, to effectively present to peers and management
• The ability to apply business judgment based on an understanding of the associated risks
• The ability to build effective personal relationships and networks across the organization and at various organizational levels
• Continually expand technical breadth and depth through research, on-the-job experience, personal networking, training, etc.
• Ability to work independently
• Ability to travel up to 20% and stay overnight consecutive days

 Education and/or Experience:

•  Bachelor’s degree in relevant Business field, preferably Management Information Systems
• Three or more years experience in an IT audit role in consulting practice, or four or more years in industry internal audit
• Experience in an integrated audit environment and the ability to incorporate financial, operational, HS&E, and IT procedures a plus
• Professional Certification (CISA, CIA, CISSP,CISM) or ability to obtain within 6 months

Preferred Computer Skills:

Knowledge of Microsoft Office Applications, Great Plains Accounting System, and RTMS

Experience in SQL, ACL or IDEA data mining techniques

Interested candidates should contact:

Jamie Knape

Stallion Oilfield Services

950 Corbindale, Suite 300

Houston, TX 77024

Phone: 713-275-4868

jknape@sofs.cc

www.stallionoilfield.com

HCC Service Company ("HCC Service") is seeking an IT Analyst for its Internal Controls Department.  HCC Service is a subsidiary of HCC Insurance Holdings, Inc. ("HCC Insurance"), with its common stock trading on the NYSE (symbol: HCC). This position will report to our Northwest Houston office.  HCC Insurance has assets exceeding $8.1 billion and shareholders’ equity of over $2.4 billion.  HCC Insurance is an international insurance company and a leading specialty insurance group with offices across the United States and in Bermuda, Spain, Ireland, and the United Kingdom.  HCC Insurance operations consist of underwriting agencies; intermediaries; and life, property and casualty insurance companies which are rated AA (Very Strong) by Standard & Poor’s, AA (Very Strong) by Fitch Ratings and A+ (Superior) by A.M. Best Company.  HCC Insurance specializes in diversified financial products; group life, accident & health; general aviation; property; marine and energy; and other specialty insurance.

The IT Analyst should have a minimum of 2 years IT audit experience.  Also, IT advisory or Sarbanes-Oxley experience is required.  This position will report to the Director of Internal Controls.

Responsibilities

• Assist HCC management in the enhancement and maintenance of the enterprise risk management and SOX compliance programs.  This includes promoting, monitoring and periodically reporting on the effectiveness of the IT control environment.
• Work in an advisory capacity with IT management to design and document effective, risk-based, cost-justified ITGC and application controls.
• Perform remote and on-site control reviews for new and existing business units to ensure that ITGC and application controls are accurately documented and maintained.
• Execute the annual test plan for ITGC and application controls within prescribed deadlines and according to HCC standards.  Report testing results to management and external auditors.  Develop complete and accurate work papers to document and support findings and work performed.
• Facilitate IT management’s quarterly self-assessment of ITGC and application controls.  Assist with the preparation of quarterly assessments, as needed.  Monitor management’s progress in completing assessments to ensure assessment deadlines are met.  Provide training and other assistance to management as needed.  Review management responses to determine if control gaps (i.e., changes and/or self-reported control deficiencies) exist.  Conduct follow-up and research, as needed.  Document and report final results to Internal Controls management.
• Document and assess the significance of deficiencies in the design and operating effectiveness of ITGC and application controls.  Evaluate management’s remediation action plans and track remediation efforts.  Assist the Director of Internal Controls in reporting status and significance of IT-related deficiencies to HCC management, the Audit Committee and external auditors.
• Participate in major system implementation and infrastructure projects to ensure appropriate controls are implemented, documented and maintained.
• Perform targeted, risk-based application and general controls reviews as needed.
• Perform system administration tasks for Internal Controls applications.  Participate in design, testing and documentation of Internal Controls applications, as needed.
• Participate in special projects as required.

Qualifiications

• Accounting, Finance or MIS Degree required.  CISA (or working toward) preferred.
• Minimum of 2 years IT audit, IT advisory or Sarbanes-Oxley experience required.
• Exposure to and/or interest in developing technical skills in a broad range of IT technologies and processes (e.g., Network, Server, AS/400, Web and Database Security; Change Management; System Implementations; Disaster Recovery; Backup Systems and Processes; and Application Controls).
• Strong interpersonal skills and ability to interact effectively and professionally with variety of personalities at various corporate levels in oral and written form.
• Strong organizational skills with ability to prioritize responsibilities to meet deadlines while maintaining strong attention to detail.
• Strong computer skills, including MS Office 2003.
• Approximately 30% travel required, primarily domestic.  International travel limited to UK and Spain.

If your qualifications match these requirements, please send your resume with salary requirements/history to employ@hcc.com. Please put in the subject line “Internal Controls IT Analyst”

Any offer of employment will be contingent upon positive credit/criminal background and reference checks.