IT Governance, Risk & Compliance Internal Auditor

Date: Jul 2, 2024

Location: Exton, PA, US

Company: Bentley Systems

IT GRC Internal Auditor


Location: Home-Based, US


Position Summary: 

We are looking for an IT GRC Internal Auditor to join our team and help us ensure compliance with controls of various security certifications in our internal audit program.  You will be responsible for planning, executing, and reporting on internal audits and compliance reviews, as well as collaborating with other internal IT GRC auditors on audits related to ISO, SOC2, NIST, and other standards. You will also work closely with the IT management and external auditors to identify and remediate any gaps or deficiencies in the IT control environment. 


Support management's annual assessment of internal controls specifically as it relates to the evaluation of the design and operational effectiveness and measurement of controls as required to demonstrate compliance.


The individual will support the management and leadership in understanding the risks within various processes and business cycles throughout the organization that are relevant in assessing the related controls.  


This role is ideal for a candidate with a public accounting and/or IT audit experience and who is actively seeking professional growth and experience with a large and dynamic organization. This role allows an individual the opportunity to interact with numerous colleagues and functions at various levels across the organization. 


Your Day-to-Day:

  • Coordinate and lead process and control walkthroughs. 
  • Lead the execution and evaluation of Compliance Reviews and Internal Audits in accordance with the annual audit plan and the internal audit methodology.
  • Monitor the status of and execute controls testing to ensure completion within predefined deadlines.
  • Work with management to provide insight into potential risks and process improvements to support qualitative/quantitative improvements in control operations to eliminate deficiencies/improve processes/controls.
  • Monitor the status of identified issues and remediation efforts to ensure timely closure of findings.
  • Collaborate with internal and external auditors, as needed
  • Assess the design and operating effectiveness of controls and identify any weaknesses or exceptions.
  • Document the audit procedures, findings, and recommendations in clear and concise audit workpapers and reports.
  • Communicate the audit results and recommendations to the IT Management and the external auditors.
  • Follow up on the implementation of the agreed action plans and verify the remediation of the issues.
  • Support other IT GRC internal audit projects related to ISO, SOC2, NIST, and other standards, as needed.
  • Stay updated on the latest IT requirements, best practices, and industry trends.
  • Contribute to the continuous improvement of the internal audit function and processes.
  • This is a full-time role expected to work 40 hours per week, home-based in the US.
  • Requires sitting or standing at will while performing work on a computer (or any other physical requirements). The role requires communication with managers, peers, and other colleagues of the company in person (on occasion), and by utilizing Microsoft Teams chat, calling, and meeting functions.
  • This role requires 1-2 trips per year to the corporate office in Exton, PA. 


What You Bring to The Team: 

  • Bachelor’s degree in Information Systems, Accounting, Finance, or related field. 
  • Minimum 3 years of experience in IT auditing, preferably in a software company or a public accounting firm.
  • Knowledge of IT Controls, frameworks, and testing methodologies.
  • Knowledge of other IT audit standards and regulations, such as ISO, SOC2, NIST, etc.
  • Strong analytical, problem-solving, and communication skills.
  • Attention to detail, accuracy, and quality.
  • Ability to work independently and as part of a team.
  • Professional certification, such as CISA, CIA, or equivalent, is a plus. If not currently certified, the candidate will have willingness to attain in the future.


Other Skills: 

  • Strong project management and analytical skills
  • Detail-oriented, deadline driven, self-directed and organized individual
  • Strong written and verbal communications skills
  • Proven ability to excel in highly interactive team environment
  • Able to apply effective problem-solving skills
  • Working knowledge of Microsoft Office applications (Word, Excel, and PowerPoint).
  • Working knowledge of AuditBoard or other compliance management system is a plus.
  • Knowledge of and experience with audit industry documentation standards (e.g., preparation of workpapers, walkthroughs, control testing).
  • Able to understand risk and control concepts


What We Offer:

  • A great Team and culture – please see our Recruitment Video.
  • An exciting career as an integral part of a world-leading software company providing solutions for architecture, engineering, and construction.
  • Competitive Salary and benefits.
  • The opportunity to work within a global and diversely international team.
  • A supportive and collaborative environment.


About Bentley Systems

Bentley Systems (Nasdaq: BSY) is the infrastructure engineering software company. We provide innovative software to advance the world’s infrastructure – sustaining both the global economy and environment. Our industry-leading software solutions are used by professionals, and organizations of every size, for the design, construction, and operations of roads and bridges, rail and transit, water and wastewater, public works and utilities, buildings and campuses, mining, and industrial facilities. Our offerings, powered by the iTwin Platform for infrastructure digital twins, include MicroStation and Bentley Open applications for modeling and simulation, Seequent’s software for geoprofessionals, and Bentley Infrastructure Cloud encompassing ProjectWise for project delivery, SYNCHRO for construction management, and AssetWise for asset operations. Bentley Systems’ 5,200 colleagues generate annual revenues of more than $1 billion in 194 countries.

Equal Opportunity Employer:


Bentley is an equal opportunity employer and considers all qualified applicants for employment without regard to race, color, sex, sexual orientation, gender identity, disability, pregnancy, protected veteran status, religion, national origin, age, genetic information or any other protected characteristic.  This commitment extends to all aspects of employment, including, but not limited to, hiring, placement, promotion, compensation, and training. Know Your Rights as an applicant under the law.


Bentley Policy on EEO, Affirmative Action and Pay Transparency Non-Discrimination

Bentley participates in e-Verify / Bentley participate in e-Verify / Right to Work Notice



Know your rights:

EEO Policy:

E-Verify Participation poster:

Nearest Major Market: Philadelphia

Job Segment: Wastewater, Water Treatment, Engineer, Engineering