Tests the IT general controls supporting financial reporting and business operations β change management, logical access, backup procedures, and operations. Entry-level audit work often anchored in SOX compliance with strong career mobility into broader technology risk.
Most days involve executing assigned ITGC procedures β pulling change tickets, sampling new user provisioning, testing backup and recovery procedures, and walking through application controls with system owners. You'll often coordinate with financial auditors who need IT control results to inform their substantive work, and senior auditors will steer scope and approach.
What's harder than people expect is the translation work β financial auditors don't always understand technology, and IT teams don't always speak audit. Sitting in between, you have to make both sides feel heard while still landing the finding. Variance is meaningful between Big Four (SOX-heavy, multiple clients), internal audit (deeper system knowledge, integrated risk programs), and regulatory work. CISA, CIA, or CPA tend to be the credentials that drive advancement.
People who tend to thrive here are comfortable being a translator, patient with documentation, and curious about both controls and the technology they sit on. If you want hands-on technical work, the role can feel more advisory. If you find satisfaction in proving that the technology under financial reporting actually works as designed, the work tends to open doors into security, GRC, or technology consulting.
Where this role sits in the broader career landscape β and where it can take you.
Roles like this one sit within a broader occupational category. The numbers below reflect that full landscape β helpful for context, but your specific experience will depend on level, specialty, and where you work.
Tests the IT general controls supporting financial reporting and business operations β change management, logical access, backup procedures, and operations. Entry-level audit work often anchored in SOX compliance with strong career mobility into broader technology risk.
Median pay for a Junior It Auditor (information Technology Auditor) is about $104K nationally, with the field ranging roughly from $63K to $166K depending on experience, employer, and metro (BLS).
Core skills for this role include Speaking, Reading Comprehension, Active Listening, Critical Thinking, and Systems Evaluation.
Most people in this role hold a postsecondary certificate.
Employment in this field is projected to grow about 8.7% through 2034, with roughly 497,800 people working in it today (BLS).
Closely related roles include IT Auditor (Information Technology Auditor), Computer Consultant, and Senior Computer Consultant.
Truest gives you tools to understand your strengths, explore roles that fit, and plan your next move.
Explore Truest career tools