IT Auditor – Oracle Fusion ERP & Technology Risk

About the Role

IT Auditor

Oracle Fusion Implementation Assurance

• Participate in Oracle Fusion ERP/HCM implementation reviews and control assessments.
• Evaluate implementation governance, project risks, and control frameworks.
• Review Oracle Fusion security roles, user access management, and Segregation of Duties (SoD).
• Assess business process controls, approval workflows, and automated application controls.
• Review User Acceptance Testing (UAT), change management, deployment, and release management controls.
• Evaluate data migration strategies, reconciliation controls, and cutover readiness activities.
• Assess integrations between Oracle Fusion and external systems, including payroll, attendance, banking, and third-party applications.
• Conduct post-go-live reviews to evaluate control effectiveness and implementation outcomes.

IT Audit & Risk Management

• Conduct risk-based IT audits covering ITGC, ITAC, cybersecurity controls, and ERP environments.
• Perform walkthroughs, control testing, risk assessments, and audit documentation.
• Develop Risk & Control Matrices (RCMs), audit programs, and workpapers.
• Identify control gaps and recommend practical remediation measures.
• Monitor and validate closure of audit findings.

Governance & Compliance

• Support compliance with SOX, ICFR, COBIT, ISO 27001, NIST, and applicable regulatory requirements.
• Collaborate with internal stakeholders, project teams, and implementation partners.
• Support internal and external audit activities.
• Prepare audit reports and present findings to management.

Required

• Bachelor's Degree in Information Technology, Computer Science, Information Systems, Cybersecurity, or related discipline.
• 4–8 years of experience in:
• IT Audit
• ERP Audit
• Technology Risk

Preferred Experience

• Hands-on experience with
• Oracle Fusion ERP/HCM implementation projects, ERP controls, or post-implementation reviews
• .
• Experience assessing:

• User Access Management

• Segregation of Duties (SoD)

• UAT & Deployment Controls

• Experience working with Big 4 firms, consulting organizations, or large-scale ERP transformation programs.

Certifications (Preferred)

• CISA
• CISM
• CRISC

Technical Skills

• Strong understanding of Oracle Fusion ERP controls and security concepts.
• Knowledge of ITGC, ITAC, ERP controls, and internal audit methodologies.
• Familiarity with ERP platforms such as Oracle Fusion, SAP, or Microsoft Dynamics.
• Understanding of governance frameworks and standards such as COBIT, ISO 27001, NIST, and SOX/ICFR.
• Strong analytical, problem-solving, report-writing, and stakeholder management skills.