B3 - Information Systems Auditor (IT Talent Needed) A resume helps you stand out to hiring managers and recruiters; your resume communicates your experience and your brand. While it is not required ...
B3 - Information Systems Auditor (IT Talent Needed) A resume helps you stand out to hiring managers and recruiters; your resume communicates your experience and your brand. While it is not required ...
Information Systems Auditor
Nashville, TN · On-site
Information Systems Auditor Location: Nashville, Tennessee Join us in our mission to make government work better. Role Snapshot Information Systems Auditors in the Division of State Audit help ensure ...
Quick apply
Apply Early
Information Systems Auditor
Nashville, TN · On-site
Information Systems Auditor Location: Nashville, Tennessee Join us in our mission to make government work better. Role Snapshot Information Systems Auditors in the Division of State Audit help ensure ...
Apply Early
Information Systems Auditor
Nashville, TN · On-site
Information Systems Auditor Location: Nashville, Tennessee Join us in our mission to make government work better. Role Snapshot Information Systems Auditors in the Division of State Audit help ensure ...
Information Systems Auditor
Nashville, TN · On-site
Information Systems Auditor Location: Nashville, Tennessee Join us in our mission to make government work better. Role Snapshot Information Systems Auditors in the Division of State Audit help ensure ...
Information Systems Auditor
Atlanta, GA · On-site
B3 - Information Systems Auditor (IT Talent Needed) A resume helps you stand out to hiring managers and recruiters; your resume communicates your experience and your brand. While it is not required ...
Information Systems Auditor
Atlanta, GA · On-site
B3 - Information Systems Auditor (IT Talent Needed) A resume helps you stand out to hiring managers and recruiters; your resume communicates your experience and your brand. While it is not required ...
Information Systems Auditor
$125K - $225K/yr
Parsons is looking for an amazingly talented Information Systems Auditor to join our team! In this role you will get to perform integrated, multidisciplinary assessments that assess survivability of ...
Information Systems Auditor
$125K - $225K/yr
Parsons is looking for an amazingly talented Information Systems Auditor to join our team! In this role you will get to perform integrated, multidisciplinary assessments that assess survivability of ...
Information Systems Auditor
Chantilly, VA · On-site
$125K - $225K/yr
Parsons is looking for an amazingly talented Information Systems Auditor to join our team! In this role you will get to perform integrated, multidisciplinary assessments that assess survivability of ...
Information Systems Auditor
Chantilly, VA · On-site
$125K - $225K/yr
Parsons is looking for an amazingly talented Information Systems Auditor to join our team! In this role you will get to perform integrated, multidisciplinary assessments that assess survivability of ...
Information Systems Auditor
$125K - $225K/yr
Parsons is looking for an amazingly talented Information Systems Auditor to join our team! In this role you will get to perform integrated, multidisciplinary assessments that assess survivability of ...
Information Systems Auditor
$125K - $225K/yr
Parsons is looking for an amazingly talented Information Systems Auditor to join our team! In this role you will get to perform integrated, multidisciplinary assessments that assess survivability of ...
Advise the Information System Owner (ISO), Information Data Owner (IDO), Program Security Officer (PSO), and the Delegated and/or Authorizing Official (DAO/AO) on any assessment and authorization ...
Quick apply
Apply Early
Advise the Information System Owner (ISO), Information Data Owner (IDO), Program Security Officer (PSO), and the Delegated and/or Authorizing Official (DAO/AO) on any assessment and authorization ...
Apply Early
Advise the Information System Owner (ISO), Information Data Owner (IDO), Program Security Officer (PSO), and the Delegated and/or Authorizing Official (DAO/AO) on any assessment and authorization ...
Advise the Information System Owner (ISO), Information Data Owner (IDO), Program Security Officer (PSO), and the Delegated and/or Authorizing Official (DAO/AO) on any assessment and authorization ...
The Certified Information Systems Auditor (CISA) will be responsible for planning and executing audits of the client's information systems and controls to ensure compliance, mitigate risk, and ...
The Certified Information Systems Auditor (CISA) will be responsible for planning and executing audits of the client's information systems and controls to ensure compliance, mitigate risk, and ...
The Certified Information Systems Auditor (CISA) will be responsible for planning and executing audits of the client's information systems and controls to ensure compliance, mitigate risk, and ...
The Certified Information Systems Auditor (CISA) will be responsible for planning and executing audits of the client's information systems and controls to ensure compliance, mitigate risk, and ...
Performing Information Technology audits, cybersecurity assessments, and establishing governance to ... A minimum of 5 years of experience in IT auditing or a related field. * Experience in performing ...
Performing Information Technology audits, cybersecurity assessments, and establishing governance to ... A minimum of 5 years of experience in IT auditing or a related field. * Experience in performing ...
Accounting & Information Systems Auditor Location: Multiple counties in the Tri-Cities Tennessee area, including Sullivan, Washington, Greene, Hancock, and Johnson. Join us in our mission to make ...
Accounting & Information Systems Auditor Location: Multiple counties in the Tri-Cities Tennessee area, including Sullivan, Washington, Greene, Hancock, and Johnson. Join us in our mission to make ...
Accounting & Information Systems Auditor Location: Multiple counties in the Tri-Cities Tennessee area, including Sullivan, Washington, Greene, Hancock, and Johnson. Join us in our mission to make ...
Quick apply
Apply Early
Accounting & Information Systems Auditor Location: Multiple counties in the Tri-Cities Tennessee area, including Sullivan, Washington, Greene, Hancock, and Johnson. Join us in our mission to make ...
Apply Early
We are seeking a qualified Information Systems Auditor to conduct a focused audit of our accounting servers and data backup infrastructure. This role will assess the effectiveness, reliability, and ...
We are seeking a qualified Information Systems Auditor to conduct a focused audit of our accounting servers and data backup infrastructure. This role will assess the effectiveness, reliability, and ...
Certified Information Systems Auditor (CISA)
Arlington, VA · On-site
$221K/yr
The Certified Information Systems Auditor (CISA) will be responsible for planning and executing audits of the client's information systems and controls to ensure compliance, mitigate risk, and ...
Certified Information Systems Auditor (CISA)
Arlington, VA · On-site
$221K/yr
The Certified Information Systems Auditor (CISA) will be responsible for planning and executing audits of the client's information systems and controls to ensure compliance, mitigate risk, and ...
Certified Information Systems Auditor (CISA)
Arlington, VA · On-site
$106K - $221K/yr
The Certified Information Systems Auditor (CISA) will be responsible for planning and executing audits of the client's information systems and controls to ensure compliance, mitigate risk, and ...
Certified Information Systems Auditor (CISA)
Arlington, VA · On-site
$106K - $221K/yr
The Certified Information Systems Auditor (CISA) will be responsible for planning and executing audits of the client's information systems and controls to ensure compliance, mitigate risk, and ...
We are seeking a qualified Information Systems Auditor to conduct a focused audit of our accounting servers and data backup infrastructure. This role will assess the effectiveness, reliability, and ...
Quick apply
We are seeking a qualified Information Systems Auditor to conduct a focused audit of our accounting servers and data backup infrastructure. This role will assess the effectiveness, reliability, and ...
The Certified Information Systems Auditor (CISA) will be responsible for planning and executing audits of the client's information systems and controls to ensure compliance, mitigate risk, and ...
The Certified Information Systems Auditor (CISA) will be responsible for planning and executing audits of the client's information systems and controls to ensure compliance, mitigate risk, and ...
Certified Information Systems Auditor (CISA)
Arlington, VA · On-site
$78K - $160K/yr
The Certified Information Systems Auditor (CISA) will be responsible for planning and executing audits of the client's information systems and controls to ensure compliance, mitigate risk, and ...
Certified Information Systems Auditor (CISA)
Arlington, VA · On-site
$78K - $160K/yr
The Certified Information Systems Auditor (CISA) will be responsible for planning and executing audits of the client's information systems and controls to ensure compliance, mitigate risk, and ...
Information Systems Auditor information
See salary details
$41.5K - $49.1K
7% of jobs
$49.1K - $56.7K
13% of jobs
$58.8K is the 25th percentile. Wages below this are outliers.
$56.7K - $64.3K
18% of jobs
The median wage is $71.5K / yr.
$64.3K - $71.9K
13% of jobs
$71.9K - $79.5K
12% of jobs
$79.5K - $87K
13% of jobs
$87.3K is the 75th percentile. Wages above this are outliers.
$87K - $94.6K
9% of jobs
$94.6K - $102.2K
3% of jobs
$102.2K - $109.8K
5% of jobs
$109.8K - $117.4K
6% of jobs
$117.4K - $125K
1% of jobs
$41.5K
$78.2K
$125K
How much do information systems auditor jobs pay per year?
What are the key skills and qualifications needed to thrive as an Information Systems Auditor, and why are they important?
What Is an Information Systems Auditor?
An information systems auditor is responsible for ensuring that a business’s IT system follows security, regulatory, and compliance requirements. As an information systems auditor, your job duties include conducting onsite audits of IT and business systems, identifying potential vulnerabilities, and generating audit reports based on findings. Qualifications include a bachelor's degree in information systems or a related field. You also need to earn your Certified Information Systems Auditor (CISA) certification, which is the standard for learning the necessary knowledge and skills for this career. To apply for certification, you must have five years of experience in information systems auditing, assurance, or security with a proven record of following ISACA's Code of Professional Ethics and Information Systems Auditing Standards.
What are some common challenges Information Systems Auditors face when performing audits across different departments?
What is the salary of CISA?
Is CISA an entry level job?
What does an information system auditor do?
What is the difference between Information Systems Auditor vs Cybersecurity Analyst?
| Aspect | Information Systems Auditor | Cybersecurity Analyst |
|---|---|---|
| Certifications | CISA, CISSP (optional) | CISSP, CompTIA Security+ |
| Work Environment | Audit firms, corporate compliance teams | Security operations centers, IT departments |
| Industry Usage | Finance, healthcare, government | Finance, tech, government |
| Primary Focus | Assessing IT controls, compliance, risk management | Preventing, detecting, responding to security threats |
While both roles involve IT security, the Information Systems Auditor primarily evaluates controls and compliance, whereas the Cybersecurity Analyst focuses on active threat detection and response. Understanding these differences helps organizations align their IT and security strategies effectively.
What is an Information Systems Auditor?
Is an auditor a high paying job?

Job description
Requisition 39919: B3 - Information Systems Auditor (IT Talent Needed)Â
A resume helps you stand out to hiring managers and recruiters; your resume communicates your experience and your brand. While it is not required, we encourage you to include an up-to-date resume along with a completed job application to give you the best opportunity to be considered. A complete resume helps us to better understand your unique background, relevant experiences, and passions. We look forward to learning about you.
Norfolk Southern offers a unique opportunity to be part of our proud legacy that spans nearly 200 years. We are a customer-centric, operations-driven team dedicated to advancing safety, serving communities, and driving innovation for tomorrow's rail.  As part of Norfolk Southern, you'll join a collaborative team where there are opportunities for growth across the organization. We are building a culture where everyone can thrive by owning and driving exceptional results, being humble and leading with trust, serving our customers with excellence, and collaborating and coaching to win.
Primary PurposeÂ
The Information Systems Internal Auditor (IS Auditor) provides independent assessments of the control environment over IT infrastructure, systems, and data through the execution of risk analysis, control evaluation, and innovative audit testing procedures. Â The IS Auditor focuses on the secure and effective deployment and operation of technology in support of corporate objectives and regulatory requirements. Â The IS Auditor builds and cultivates effective business relationships while providing independent value-added audit and advisory services. Â IS Auditor activities include developing risk-based audit programs, identifying recommendations that help mitigate risks and provide continuous improvement in processes and controls, communicating results, and following up on issues reported.
Â
Principal Duties
  Participates in risk analysis, control identification, and the detailed development, execution and communication of the risk-based audit plan.
  Independently performs assigned audit testing and concludes on the effectiveness of controls, identifying control gaps and exceptions and evaluating the potential impact.
  Verifies the adequacy of IT procedures for the company through a systemic program of audits.
  Demonstrates the ability to multi-task, by clearly documenting the results of testing on more than one audit concurrently.
  Completes audit work, including audit work plan, work papers, findings, and associated reports.
  Prepares audit reports and work papers to ensure adequate documented evidence exists to support audit opinions and conclusions.
  Conducts IT integrated audits with operational, compliance, financial, and investigative audit teams, as assigned.
  Accurately interprets collected evidence to effectively Identify, recommend, and report improvement opportunities for processes and controls.
  As appropriate, identifies opportunities for continuous improvement related to the use of technology.
  Manages auditee relationship, including facilitating meetings, discussions of findings, and presenting draft and final reports in a professional manner.
  Prepares well-written and timely audit reports which communicate audit issues and related recommendations in both technical and non-technical terms to management.
  Effectively communicates audit issues and related recommendations in both technical and non-technical terms to management.
  Demonstrates development in technical and analytical skills to understand new and existing technologies, including Cyber Security, IT General Controls and Software Development Practices.
  Demonstrates technical understanding of data analysis concepts and practices.
  Keeps abreast of company policies and procedures, current developments in technology and auditing professions, and regulatory changes.
  Develops an awareness of changes in IT audit practices, regulatory requirements, and IT Risk frameworks to understand their impact to Auditing. (e.g. NIST, COBIT, ISO, etc.)
Â
Job Related Experience
Minimum Level: 1 yearÂ
Preferred Level: 3-5 yearsÂ
Â
EducationÂ
Required Level: Bachelor's Degree (BA, BBA, BS)
Preferred Majors: Computer Science, Information Systems, Cybersecurity, Accounting Information Systems, Internal Auditing.Â
Â
Skills RequiredÂ
  1 year experience and/or exposure to internal information systems audit, risk, or compliance.  Â
Â
Skills Preferred Â
  3-5 years experience in Internal Audit with a focus on information systems.Â
  Broad IT knowledge in infrastructure technologies, application development and support, and emerging technologies in one or more of the following areas:Â
      o   IT General Controls (ITGCs) access, change management, and operations
      o   Cybersecurity Controls identity & access management, data protection, security monitoring
      o   Application Lifecyle Controls key system controls supporting business processes
      o   Data Analytics & Audit Testing data extraction, validation, and risk-based analysis
      o   IT Risk & Control Frameworks NIST, COBIT, COSO alignment
      o   Systems & Infrastructure ERP (SAP), databases, operating systems, and networks
      o  Business Continuity & Disaster Recovery (BCP/DR) resiliency and recovery capabilities
Â
Licenses / Certications
Required: None listedÂ
Preferred:
  Certified Information Systems Auditor (CISA)
  Certified Information Systems Security Professional (CISSP)
  Certied Internal Auditor (CIA)
Â
Skills and Abilities
  Communication Skills
  Time Management
  Analyzing Problems
  Agile LearnerÂ
  Adaptive Thinking
Â
Career PathÂ
Predecessor Jobs:
  Staff Auditor
Future Jobs:
  Sr. Internal Auditor
  Manager of Information System Audits
  Director of Audits
  Various other management opportunities
Â
Work Conditions
Environment: Hybrid (3) days on-site and (2) remote work per week
Shift Work: No; as neededÂ
On-Call: NoÂ
Weekend Work: No; as neededÂ
Travel Required: as needed Â
Company Overview
Since 1827, Norfolk Southern Corporation (NYSE: NSC) and its predecessor companies have safely moved the goods and materials that drive the U.S. economy. Today, it operates a customer-centric and operations-driven freight transportation network. Committed to furthering sustainability, Norfolk Southern helps its customers avoid 15 million tons of yearly carbon emissions by shipping via rail. Its dedicated team members deliver more than 7 million carloads annually, from agriculture to consumer goods, and is the largest rail shipper of auto products and metals in North America. Norfolk Southern also has the most extensive intermodal network in the eastern U.S., serving a majority of the country's population and manufacturing base, with connections to every major container port on the Atlantic coast as well as the Gulf of Mexico and Great Lakes. Learn more by visiting www.NorfolkSouthern.com.
At Norfolk Southern, we believe in celebrating our individuality. By leveraging the unique backgrounds and viewpoints of our employees, we can create a culture of innovation, respect, and inclusion. We know that employees thrive in a workplace where differing viewpoints, ideas, and experiences are freely shared and valued. As such, we encourage all employees to contribute their distinctive skills and capabilities to our organization.
Equal employment opportunities are available to all applicants regardless of race, color, religion, age, sex, national origin, disability status, genetic information, veteran status, sexual orientation, and gender identity. Together, we power progress.