The Coca-Cola Company
Job Description Summary:
Due to growth and internal job rotations, The Coca-Cola Company is seeking highly-motivated, qualified candidates for a Principal IT Auditor on the Internal Audit team. The purpose of this position is to perform technology-focused assessments in areas such as cybersecurity, digital solutions, and privacy, participating in regular risk discussions with leadership, and conducting risk-based financial compliance audits to determine operating effectiveness of internal controls, including Sarbanes-Oxley related controls. This position will participate in the Corporate Audit Department Rotation Program and assignments during the rotation will be dependent on the candidate’s skill set and performance. Audit assessments and compliance activities are conducted for internal clients at our headquarters in Atlanta, GA and at locations around the world.
- Create plan for upcoming audits through a contribution of ideas on the methodology and approach for upcoming assignments based on review of prior year’s audit work papers, flowcharts and audit report.
- Perform interviews with process and business owners at all levels and across the company to gather information, ascertain key risks, areas of concerns, and the expected internal control that should be in place. Independently execute predesigned audit tests and assess the adequacy and effectiveness of the business areas processes, policies or controls. Identify gaps/opportunities/key risks and develop corrective actions to address gaps or assess adequacy of solutions offered by business partners.
- Perform comprehensive analysis of information prompted through interviews and document review by demonstrating professional skepticism and appropriate follow-up.
- Present and confirm audit findings/issues and the related corrective action to various levels of process/business owners.
- Document assessment and test results in compliance with internal audit industry (i.e., Institute of Internal Auditors) and departmental standards. Accurately prepare written audit finding/issue and applying judgment and analysis to recommend the related corrective action.
- Assist other staff auditors in performing their job responsibilities by providing them with on-the-job training and coaching.
- Effective in writing reports, highlighting audit findings and making recommendations for corrective action.
- Completion of required internal audit department tasks needed to ensure the department’s compliance with professional industry standards (e.g., self-review of audit work, proper close-out of the audit files, adequately responding to supervisor review comments, etc.), as well as planning for the next assignment.
- Available to travel (domestic and international) up to 30%.
- Regular, dependable attendance & punctuality.
Function Specific Activities:
- Prepare planning memo in order to provide final documentation on audit cycle risk assessment, scope allocation, logistics, and resource allocation.
- Conduct in-person interviews with client (i.e., company, customer, or vendor) personnel at all levels of the organization in order to construct process maps/narratives of the individual business processes.
- Gather reports, designs, records, bill, or invoices in order to test key control attributes.
- Inspect overall internal control processes to evaluate efficiency and effectiveness of processes, procedures, and internal control systems.
- Document audit results (e.g., written narratives, spreadsheets to test results, completed work programs) in order to justify and support results, and provide guidance for future audits of that area.
- Write draft audit comment that summarizes audit findings and recommendations and discuss the validity of the comment with the responsible client employee.
- Participate in client (i.e., company management, customer management, vendor management) status meetings to discuss preliminary audit findings and recommendations.
- Update audit comments based on feedback from status meetings, the client responsible, audit team members, and audit manager.
- Prepare written audit report provided to client and senior management that incorporates the individual audit comments and summarizes the scope, significant issues, and overall audit ranking.
- Participate in client Final Results/Closing Meetings to discuss the audit report.
- Gather and summarize data and information regarding compliance with policies, procedures, and standards.
- Identify activities not in accordance with Company policies and procedures and inform appropriate parties.
- Establish objectives for each member of a project team in order to clarify expectations and the relationship of his or her work to that of others on the team.
- Give direction to and review others by offering approaches to be used and following up to ensure timely and quality execution against expectations.
- Coordinate work efforts of others to ensure integration and completion of work against expectations.
- Provide feedback to others in order to enhance their job performance.
- Develop plans for a work or task assignment to ensure effective completion against overall project or business plan.
- Manage a project team against a work plan.
- Determine priorities for one’s area of accountability to create clarity about focus and enable work to be completed efficiently.
- Ensure priorities are handled effectively by modifying plans and actions in your own area of accountability.
Function Specific Knowledge, Skills, & Abilities:
- Control Environment. Ability to assess current controls to ensure that assets are safeguarded and that transactions are authorized, recorded, and reported. This may include designing and implementing cost-effective systems and procedures properly.
- Data Collection. Knowledge of data collection methods. This includes obtaining information through reading, interviews, observations, and surveys.
- Auditing Standards. Knowledge of relevant professional auditing standards including auditing standards of the American Institute of Certified Public Accountants (AICPA), Institute of Internal Auditors (IIA), Committee of Sponsoring Organizations (COSO), Information Systems Audit Control Association (ISACA), and International Organization of Standards (ISO).
- Audit Interviewing. Ability to question individuals in order to gather and understand facts about processes, events, or transactions.
- Professional Skepticism. Ability and inclination to tactfully yet forcefully pursue understanding and verification to the point of reasonable assurance.
- Objectivity. Ability to remain independent and objective when performing audits. This includes adhering to the facts and standards (e.g., GAAP, Standards, Practices, and Procedures) and not being unduly influenced by operating management.
- ACL and SAP Extraction Software. Knowledge of how to use ACL and SAP computer software packages in order to extract necessary data to perform data analyses.
Related Work Experience:
- At least 1-3 years of related work experience
- SAP preferred along with prior IT operational background
- A 4-year undergraduate degree in related field of study (e.g., Management Information Systems, Information Technology, Computer Science, and Business with Master of Accountancy program – IT track) is required.
- At least 4-5 years of relevant prior work experience and related industry IT public accounting or cybersecurity work experience is required, including experience leading multiple engagement teams.
- A CISA or CISSP is preferred, but not required.
- A strong knowledge of risk based advanced IT auditing in a dynamic and changing environment applying appropriate IT control frameworks (e.g. COBIT, PCI, NIST) to evaluate areas of risk is required.
- Excellent written and verbal communication skills.
- Ability to read, write and interpret instructional documents such as reports and procedure manuals.
- Experience working with technologies such as SAP ECC/Hana, SAP GRC, Active Directory, Linux, Windows, Mac OS, AIX, Oracle Database, SQL Server, AS400, Amazon Web Services, Azure Cloud Services, Microsoft 365, Salesforce, Workday, Palo Alto Networks, etc.
- Should demonstrate sound technical proficiency and the curiosity, willingness and ability to learn advanced IT environments.
- Must have a solid awareness of General IT controls and activities. This includes strong knowledge across a breadth of IT processes, including but not limited to: security operations, program management, security administration, system operations, change management, modern development (e.g., DevOps, Agile), data governance, privacy, and incident/problem management.
- Must have above average mathematical skills, including the ability to compute rates, ratios, and percentages, and the ability to work with mathematical concepts such as probability and statistical inference.
- Must be able to work independently, but under appropriate supervision.
- This position requires analytic and problem-solving ability to review and evaluate an operation’s overall control environment.
- In addition, it requires the ability to demonstrate good judgment, professional skepticism, and a strong learning aptitude to understand the Company’s business processes as well as the ability to work with minimal supervision and demonstrate a high level of drive and initiative.
- The candidate must be able to effectively communicate with various levels of the Company, discuss appropriate risks, identify and obtain audit requests from clients, and present audit findings in a clear and professional manner.
- Ability to work a flexible schedule based on department and company needs.
- Available to travel (domestic and international) up to 30%. Extended international travel may be required.
Our Growth Culture:
One of the reasons our company continues to thrive after 130+ years is having a company culture that supports and rewards behaviors that lead to growth. Our “Growth Behaviors,” as we call them, are ways of being and working that help to make us successful. Think about how you can bring this to life in your next role at Coca-Cola.
Keep seeking, never settle. Staying curious about what is outside, and two steps ahead inspires us to challenge the status quo. Having the courage to look and leap is the way we grow. Because asking “what if?” pushes us to the next level as people and as a company.
Make it happen. True empowerment is the result of taking responsibility. This means giving yourself permission to see it, say it and do it, and owning the outcomes. Because we move forward faster when we all take action.
Version 1.0, 2.0, 3.0
Push for progress, not perfection. There are very few overnight successes. Greatness is borne of many little victories (and failures). Share v 1.0, test it, and make it better. Then create the next version. Because the moment we think something is perfect, it will be obsolete.
Include, value and trust each other. We are smart alone but together we are genius. This means being inclusive, giving the benefit of the doubt and being responsible for each other. Because, for our company to thrive for the next 100+ years, smart isn’t enough. We need genius.
We are an Equal Opportunity Employer and do not discriminate against any employee or applicant for employment because of race, color, sex, age, national origin, religion, sexual orientation, gender identity and/or expression, status as a veteran, and basis of disability or any other federal, state or local protected class.
|From the USA? You Can Earn Beer Money – Click Me|
To apply for this job please visit www.indeed.com.