kbr
Senior Internal Auditor (IT)
Job description
Title
Senior Internal Auditor (IT)
Senior Internal Auditor (IT)
KBR — Delivering Solutions, Changing the World.
KBR is a global leader in delivering science, technology, and engineering solutions to governments and top tier commercial clients to overcome tomorrow’s challenges, always maintaining our commitment to Zero Harm. With a full portfolio of services, proprietary technologies and expertise, our approximately 37,000 employees are ready to handle projects and missions throughout their entire lifecycle, from planning and design to sustainability and maintenance. Whether at the bottom of the ocean or in outer space, our clients trust us to deliver the impossible on a daily basis.
Audit and Advisory Services at KBR plays a trusted role in supporting the company’s governance, risk management, and control environment through independent assurance and practical advisory insights. The team partners across the business to evaluate key risks, strengthen processes, and provide objective perspectives that help KBR operate with integrity, accountability, and continuous improvement.
Summary Section
This role supports the company’s success by providing independent, objective assurance and advisory services across the organization. The Senior IT Auditor collaborates with IT management, business process owners, and audit stakeholders to evaluate the effectiveness of governance, risk management, and internal controls through a systematic and disciplined approach. Responsibilities include leading and executing Sarbanes-Oxley (SOX) and internal audit testing, assessing compliance with policies and regulatory requirements, identifying technology-related risks, and communicating audit results to management. The role requires strong analytical thinking, problem-solving, communication, project management, and organizational skills. International and domestic travel of up to 25% may be required.
Responsibilities
- Execute and lead SOX and internal audit testing across IT General Controls (ITGCs), IT Application Controls (ITACs), Information Produced by the Entity (IPE), SDLC controls, and technology-focused audits.
- Independently plan and perform audit procedures, evaluate control design and operating effectiveness, and develop risk-based conclusions.
- Develop clear, complete, and evidence-based audit documentation that supports testing procedures, observations, conclusions, and reporting requirements.
- Collaborate with business process owners, IT management, external auditors, and other stakeholders to obtain evidence and discuss audit results.
- Evaluate technology risks related to access management, change management, cybersecurity, interfaces, data migration, cloud technologies, and system implementations.
- Identify control deficiencies, process improvement opportunities, and emerging risks, and communicate observations in a timely and professional manner.
- Utilize data analytics, automation techniques, and technology-enabled audit tools to enhance audit effectiveness and efficiency.
- Leverage artificial intelligence (AI) tools such as Microsoft Copilot, Claude, ChatGPT, and similar technologies to improve audit planning, documentation, research, analysis, reporting, and productivity while adhering to company governance and data protection requirements.
- Stay current on evolving technology trends, cybersecurity risks, regulatory developments, and industry-leading audit practices.
- Support the execution of the annual audit plan and SOX compliance program.
- Review work performed by less experienced auditors and provide coaching, guidance, and constructive feedback.
- Manage multiple assignments simultaneously while ensuring quality, accuracy, and timely completion of deliverables.
Preferred Skills
- Demonstrates intellectual curiosity and a commitment to continuous learning and professional development.
- Strong knowledge of IT risks, controls, governance frameworks, and audit methodologies.
- Excellent interpersonal, analytical, problem-solving, and decision-making skills.
- Excellent verbal and written communication skills with the ability to effectively communicate with stakeholders at all levels of the organization.
- Strong project management and organizational skills with the ability to manage multiple priorities and deadlines.
- Demonstrated ability to work independently while contributing to team success and mentoring junior team members.
- Proficiency in leveraging data analytics, automation, and AI-enabled productivity tools such as Microsoft Copilot, Claude, ChatGPT, or similar technologies to improve audit effectiveness and efficiency.
- Ability to adapt to a rapidly changing technology and business environment.
Preferred Qualifications and Experience
- Five or more years of progressive IT audit, internal audit, external audit, cybersecurity, risk management, compliance, or related experience.
- Strong understanding of information systems auditing concepts and risks, including logical access, privileged access, change management, information security, system development lifecycle (SDLC), business continuity, disaster recovery, cloud technologies, and network security.
- Experience performing SOX 404 testing and evaluating ITGCs, ITACs, interfaces, automated controls, and system-generated reports.
- Familiarity with enterprise applications such as SAP, Microsoft Dynamics, Workday, and cloud-based systems.
- Bachelor's or Master’s degree in Information Systems, Computer Science, Business, Accounting, Engineering, Cybersecurity, or a related field.
- Professional certification such as CISA, CIA, CPA, CISSP, CISM, or equivalent certification preferred.
- Experience utilizing data analytics, automation, and AI-assisted technologies within audit, risk, or compliance activities is preferred.
Belong. Connect. Grow. with KBR!


