Position is on the staff of a private, not-for-profit government consulting firm located in McLean, VA. Work will be at client location at Fort Belvoir, VA. The successful candidate for this position will provide expertise in several areas of internal controls and risk analysis.
Specific requirements include:
Provide assistance to team in coordinating support to requests from Independent Public Accountant (IPA) audit firm(s) relative to the Provided by Client (PBC) lists, Meeting Request Lists (MRLs), sample requests, and follow-up questions across both the general fund and working capital fund audits. Support may include uploading artifacts to the Army Audit Data Repository (AADR), taking notes at meetings, ensuring work products are stored to the team’s shared spaces, and similar hands-on efforts. Support also includes staying abreast of current efforts, sending reminders to ensure suspense dates are met, and advising government leadership of emerging issues so they can be resolved quickly.
Develop status reports and provide meeting coordination support and participate in site visits to AESIP programs when requested.
Support ongoing governance of enterprise Governance Risk and Compliance (GRC) implementation efforts within systems, utilizing knowledge of GRC tools and best practices by reviewing Critical Action (CA) and Segregation of Duty (SOD) Reports.
Support program risk management efforts, including identify emerging risks, recommend risk mitigation strategies, and update risk status.
Identify where audit readiness requirements can be incorporated into the organization’s policies, processes and procedures that support the Risk Management Framework (RMF) to ensure it concurrently meets the RMF and Federal Information System Controls Audit Manual financial audit expectations.
Coordinates with cybersecurity teams to integrate remediation of auditor notices of findings and recommendations (NFRs) with other system findings identified via the RMF, and captured in eMASS, when appropriate for fully-integrated cybersecurity management.
Apply analytical expertise to advise and assist ongoing financial compliance, IT Controls, and financial and internal control management regulation implementation efforts within systems as a component of financial audit.
Coordinate to document and share lessons learned across programs.