Senior Auditor - IT

AUDIT PROFL 3 (007575)

UCPath Position ID: 40178399

Position Description History/Status

Approved Date:

3/17/2026 10:07:05 AM

Date Last Edited:

3/17/2026 10:07:00 AM

Last Action Effective Date:

Organization Details

Business Unit (Location):

LACMP

Organization Code:

6200O

Organization:

CHANCELLOR'S ORGANIZATION

Division Code:

6210D

Division:

CHANCELLOR'S ORGNZTN DIV

Department:

303000 - AUDIT & ADVISORY SERVICES

Position Details

UCPath Position Number:

40178399

Position Description ID

253323

UC Payroll Title:

AUDIT PROFL 3 (007575)

Personnel Program

Professional and Support Staff (PSS)

Salary Grade:

Grade 22

Job Code FLSA:

Exempt

Union Code (Collective Bargaining Unit):

99: Non-Represented (PPSM)

Employee Relations Code:

E: All Others - Not Confidential

Employee Class (Appt Type):

2 - Staff: Career

Full-Time Equivalent (FTE)

1

SUPERVISION

UCPath Reports to Position Number:

40054364

Reports to Payroll Title:

AUDIT PROFL 4

UCPath Department Head Position Number:

40734585

Department Head Payroll Title:

AUDIT MANAGER 3

GENERAL SUPERVISION - Indicates that the incumbent develops procedures for performance of variety of duties; or performs complex duties within established policy guidelines.

POSITION SUMMARY

The IT Senior Auditor serves as a Team Leader on complex, high-impact IT audit and advisory services across the campus and health science community. This role is responsible for delivering all phases of an IT engagement — from risk assessment and audit program development to stakeholder engagement, fieldwork execution, and reporting. You will leverage specialized knowledge of information technology, cybersecurity, data governance, and system architecture to evaluate IT governance, risk management, and control processes in accordance with relevant frameworks such as NIST, ISO, and UC policies. You will deliver insightful, value-added recommendations that enhance university IT operations and support informed decision-making. You will also contribute to advisory service engagements, collaborating with IT to improve operational efficiency, address complex challenges, strengthen compliance, and manage emerging risks. Reporting to the IT Audit Supervisor, you will build and maintain collaborative relationships with IT campus stakeholders, acting as a trusted advisor while maintaining independence and objectivity.

This role offers exposure to a broad and diverse IT landscape, including administration, academic units, athletics, IT, housing and hospitality, facilities management, environmental health and safety, research operations, student affairs, the health enterprise, and much more. You'll be part of a team that embraces a dynamic, risk-based audit plan—one that evolves with the university's priorities and risk landscape. All work is conducted in accordance with departmental policies and the Institute of Internal Auditors' Global Internal Audit Standards. Engagements are periodically reviewed by the project leader, with ultimate accountability to the IT Audit Supervisor and Audit Director.

Audit & Advisory Services (A&AS), part of the Office of Ethics, Compliance, and Audit Services, plays a vital role in supporting UCLA’s mission by providing the Board of Regents and university leadership with independent, risk-based, and objective assurance, insight, and foresight. Our work strengthens the university’s ability to create, protect, and sustain value across both the campus and health enterprise. We are a people-focused, purpose-driven department that embraces innovation, continuous improvement, and the use of audit management software and data analytics to enhance the quality, efficiency, and impact of our engagements. Our services include internal audits, advisory engagements, and external audit coordination.

ADMINISTRATION AND SUPERVISION

1. Act as team leader on assigned IT projects; assist in determining the audit objectives and the audit procedures to be used; prepare a plan for each audit to be conducted; and conduct each audit in accordance with departmental and professional standards.

2. Determine the direction of audit efforts, the scope of audits, and the audit procedures to be used

3. Train staff members. 

4. Serve as a technical resource for engagements that include an IT component -providing guidance to audit staff on IT audit methodologies as well as UC and campus IT policies.

20%

TECHNICAL PERFORMANCE PART 1

1. Become knowledgeable of university IT operations, functions, activities, workflows, structures, and personnel.

2. Prepare audit programs. Perform all audit steps following departmental and professional standards. Prepare work papers that support the audit steps performed and conclusions reached.

3. Obtain and evaluate evidentiary data by using appropriate audit review and verification techniques, including inquiry, observation, inspection, and reperformance (sample testing).

4. Analyze evidentiary data as a basis of an informed and objective evaluation of the effectiveness of controls and perform root cause analysis for findings.

5. Prepare written reports for management that present strengths and improvement opportunities and offer actionable recommendations to correct deficiencies.

50%

TECHNICAL PERFORMANCE PART 2

6. Assess emerging technology risks and evaluate IT general controls (ITGCs) and application controls for critical systems, ensuring compliance with regulatory requirements and university policies.

7. Participate in system implementation reviews, including pre-deployment readiness, post-go-live assessments, and change management controls, while maintaining independence in accordance with UC Internal Audit Charter and IIA Standards.

15%

INTERPERSONAL RELATIONS

1. Hold preliminary discussions with auditee management and personnel to verify facts and obtain explanations.

2. Lead discussions with auditee management regarding audit findings, recommendations, and action plans to address audit issues.

3. Maintain contact with auditee personnel to stay informed of organizational, procedural, and personnel changes.

4. Interface with IT audit department personnel in executing IT audit tasks and conducting office business.

10%

PROFESSIONAL DEVELOPMENT

1. Engage in various professional self-development activities.

5%

•

Performs other duties as assigned.

•

Complies with all policies and standards.

•

Complies with the University of California, Los Angeles (UCLA) Principles of Community.

•

This position description is not intended to be a complete list of all responsibilities, duties or skills required for the job and is subject to review and change at any time, with or without notice, in accordance with the needs of the organization.

QUALIFICATIONS

Bachelor's Degree

Bachelor's degree in related area and/or equivalent experience/training

Required

5+ Years

External or Internal IT Auditor, or equivalent experience

Required

5+ Years

Public accounting experience, not-for-profit, higher education, and/or healthcare industry experience

Preferred

Must hold professional certification in a related designation, e.g., CIA, CPA, CFE, CISA, CFSA, CFGM

Required

IT-focused credentials such as CISA, CISSP, or other relevant cybersecurity certifications

Preferred

Demonstrated ability to perform complex IT audit and advisory projects from planning through reporting, delivering value and quality.

Required

Demonstrated working knowledge of information technology concepts (including, but not limited to: identity and access management, vulnerability management, data governance and protection, IT general controls, change management, incident response and recovery, IT asset management)

Required

Demonstrated ability to apply established internal auditing, NIST, and ISO standards, procedures, and techniques in the performance of information technology audits as well as advisory projects.

Required

Ability to design clear, concise, and relevant audit procedures that adequately address the audit objectives.

Required

Skill in communicating effectively with all levels of auditee personnel, both on a one-to-one basis and in group presentations, stressing qualities of tact, discretion, and persuasiveness. Ability to navigate difficult conversations and is solution oriented.

Required

Knowledge of emerging trends around internal audit, NIST, and ISO standards, procedures, and techniques.

Required

Ability to establish and maintain collaborative working relationships with team members, management, campus personnel, and leadership. Ability to effectively work in a team to deliver audit and advisory projects within a defined timeline.

Required

Self-starter, ability to work independently, determine priorities across multiple projects, and takes ownership of responsibilities. Actively identifies, evaluates, and recommends solutions to overcome project obstacles.

Required

Ability to supervise team members, provide direction, training, evaluate performance, and communicate feedback in a timely manner.

Required

Ability to write clear, concise, and logical audit reports that describe the background, scope, objective, procedures performed, and observations identified – including root cause, risk to the organization, and actionable recommendations.

Required

Experience with audit management software, data analytic tools (Tableau, Power BI), Microsoft tools, and/or artificial intelligence tools (CoPilot) 

Preferred

SPECIAL REQUIREMENTS AND/OR CONDITIONS OF EMPLOYMENT

Background Check: Continued employment is contingent upon the completion of a satisfactory background investigation.

Conflict of Interest: The position is subject to the University Conflict of Interest Code required by the Political Reform Act of 1974. The candidate(s) selected will be required to complete financial statements for public record.

5%

Less than 5% for Conferences and Training

LOCATION AND PHYSICAL, ENVIRONMENTAL, MENTAL (PEM) REQUIREMENTS

Environment and Work Location Information

Environment Type:

Non-Clinical Setting

Location Setting:

Other University Setting(s)

Location:

10920 WILSHIRE BLVD STE 700

•

Laptop

Standing/Walking

X

X

Sitting

X

Bending/Stooping

X

Squatting/Kneeling

X

Climbing

X

Lifting/Carrying/Push/Pull 0-25 lbs

X

X

Lifting/Carrying/Push/Pull 26-50 lbs

X

Lifting/Carrying/Push/Pull over 50 lbs

X

Physical requirements other

X

Chemicals, dust, gases, or fumes

X

Loud noise levels

X

Marked changes in humidity or temperature

X

Microwave/Radiation

X

Operating motor vehicles and/or equipment

X

Exposures other

X

Sustained attention and concentration

X

X

Complex problem solving/reasoning

X

X

Ability to organize & prioritize

X

X

Communication skills

X

X

Numerical skills

X

X

Mental demands other

X

X

Classification 3:  Position in which exposure to blood, body fluids or tissues is not part of the position description. The normal routine task involves no exposure to blood, body fluids or tissues and the employee can decline to perform tasks which involve a perceived risk without retribution.