IT Internal Auditor II

Position Description

This position will be responsible for assisting in the development and execution of the CarMax internal audit plan. This responsibility includes determining internal audit scope, performing audit procedures and preparing audit reports reflecting the results of the work performed for review by management and the Audit Committee. Work will be performed under the supervision of the Senior IT Internal Auditor or other Internal Audit management. Work performed will include SOX 404, operational and system implementation audits and other special projects. The work performed will better ensure accuracy of financial information, effective internal controls and compliance with company policies and the CarMax System Development Methodology.

  • With guidance from senior auditor, and sometimes manager, perform audits of internal control over financial reporting for management assessment under Section 404 of the Sarbanes-Oxley Act (“SOX”); includes meeting with different departments to understand key business and IT processes, testing of key automated and IT general controls and making recommendations for improvements in internal controls
  • With guidance from senior auditor, and sometimes manager, perform system implementation audits, including reviewing project objectives, assessing business process designs and testing compliance with the CarMax System Development Methodology
  • Perform operational and compliance audits or special projects, including integrated audits with the Financial audit team

Position Requirements

  • Four year degree in Accounting, Information Systems or related degree required
  • Minimum of 1-2 years of auditing experience with a public accounting firm, preferably one of the “Big Four”; or relevant IT experience in information security or quality assurance
  • Experience with internal control and compliance, including IT general controls, information technology system security, application, operating system, database, and system development and implementation audits or experience with testing information system security or applications required
  • Experience with SOX 404 compliance
  • Understanding of COSO and COBiT preferred
  • Retail industry knowledge and experience preferred
  • Strong accounting skills including general knowledge of generally accepted accounting principles (GAAP) preferred
  • Virginia-licensed CPA or CISA preferred
  • Effective planning and project management skills
  • Strong time management skills
  • Ability to perform multiple projects concurrently to meet deadlines
  • Ability to work in a team setting as well as independently
  • Strong PC skills
  • ACL experience is a plus

Back to top