Go Beyond the Ordinary. Join Wipfli LLP.

We are excited that you made the decision to consider joining Wipfli LLP, to go beyond the ordinary public accounting and consulting firm. We hope that you find, in Wipfli LLP, the firm where you will meet all of your goals and aspirations in life and work. Guided by our mission statement, “To contribute to the success of our associates and clients”, we will contribute to your development of technical and soft skills, so you can ensure our clients are successful. Since 1930, we have grown to be a thriving national firm, with a local presence, and subject matter experts of a large firm, to help our associates and clients, and perhaps you, thrive. All along, the Wipfli Way has guided our associates making our associates and clients successful, and creating a culture that values relationships.

As we being our relationship with you, we look forward to learning how we can help turn your ideas into realities, and how you will turn the challenges of our clients into opportunities for their success. To further explore more about Wipfli Way and all we have to offer, please go to our website to learn more.

Position Summary

Wipfli is currently seeking a IT Auditor for our Minnesota Region. The position could be located in either our St. Paul or Minneapolis office. The role of the IT Auditor is a staff level role that is a primary resource for performing information technology general controls reviews, Service Organization Controls (SOC) examinations, and other services within the Risk Advisory and Forensics Services (RAFS) group including technical security assessments. The Senior IT Auditor will participate in the delivery of IT examinations, information security risk assessments, SOC examinations, HIPAA compliance reviews, and technical security assessments (perimeter vulnerability assessments, internal vulnerability assessments, penetration testing, etc.) by performing these projects and creating project reports and other deliverable for Wipfli clients.

• Performs IT general controls reviews, SOC examinations, and other risk advisory services including technical security assessments. These services will be provided for a variety of clients including financial institutions, health care providers, and IT services organizations.

• Performs control testing, interprets results, and prepares reports.

• Helps maintain testing work programs.

• Bachelor’s degree in Information Security, Information Technology or related discipline, 3-5 years related experience and/or training; or equivalent combination of education and experience in similar role
• A high level of initiative, strong written and verbal communication skills and business acumen oriented around small to middle market companies
• Strong organizational skills in coordinating multiple projects/tasks simultaneously, and meeting deadlines
• Great attention to detail and problem solving skills
• CISA and/or CISSP certifications are desired
• Prior experience as a consultant is desired
• Experience with port scanning, vulnerability assessment and penetration testing tools (e.g., Nmap, Nessus, Metasploit), and manual security testing processes
• Strong knowledge of Windows Server and Linux systems
• Strong knowledge of networking and security technologies including routers, switches, firewalls, IDS, anti-virus, protocol analyzers
• Knowledge of database systems

All your information will be kept confidential according to EEO guidelines.