Agency

Office of the State Controller

Division

Audit, Risk and Compliance Services

Job Classification Title

State Controller Financial Specialist II (NS)

Position Number

65043125

Grade

NC20

About Us

The State Controller serves as an independent resource to protect the financial integrity of the State and to promote accountability in an objective and efficient manner through its accounting, disbursing, payroll, internal controls, data management, eCommerce, and financial reporting systems that serve state agencies, employees, and the public.

The foundational principles of the office are Integrity/Ethics, Objectivity, and Accountability. OSC’s overall goals are to optimize operational execution, manage risk effectively and efficiently, and foster a high-performance culture. OSC will provide excellent customer service while achieving those goals.

Description of Work

***RE-Posting: This position is being re-posted. All previous applicants are still being considered and need not re-apply.***

Please Note: OSC does not use 3rd parties to conduct job interviews.

**OSC is interested in every qualified candidate who is eligible to work in the United States. However, we cannot sponsor visas at this time. **

**Successful candidate will be subject to a criminal background check. **

The mission of the Office of the State Controller (OSC) is to protect the financial integrity of the State and promote accountability in an objective and efficient manner.

This position is based in Raleigh, but a Hybrid/fully remote work arrangement is possible.

Salary Range; $70,478 - $123,336

NOTE: This job posting will close at 11:59 p.m. the night before the closing date.

The mission of the Office of the State Controller (OSC) is to protect the financial integrity of the State and promote accountability in an objective and efficient manner. The foundational principles of the office are Integrity /Ethics, Objectivity and Accountability. OSC’s overall goals are to optimize operational execution, manage risk effectively and efficiently and foster a high-performance culture. OSC will provide excellent customer service while achieving those goals.

The State Controller is the State’s Chief Fiscal Officer. The Controller serves as an independent resource to protect the financial integrity of the State and to promote accountability in an objective and efficient manner through accounting, disbursing, payroll, internal control, eCommerce and financial reporting systems. The basis for the Controller’s authority is statutory.

Primary Purpose of Audit, Risk and Compliance Services:
• Advocate for fiscal accountability and transparency in government
• Ensure compliance with applicable laws and regulations
• Recover funds which would otherwise not be available for the benefit of the State’s citizens
• Protect the integrity of critical data resources and ensure the security of all personally identifiable information entrusted to our safekeeping
• Provide for the continuity of the State’s fiscal operations; and,
• Provide management with independent and objective assessments of agency controls and processes.

Primary Purpose of the Position:

The primary purpose of this position is to assist with the reconciliation of benefit deductions. This position will provide the necessary expertise to evaluate system configurations, data interfaces, access controls, and automated calculations to ensure deductions are complete, accurate, and authorized. This role will help identify discrepancies arising from system errors, interface failures, improper configurations, or unauthorized changes that may not be detectable through manual reconciliation alone. The IT-IS Auditor will ensure that system-driven deductions align with approved benefit elections, plan documents, and regulatory obligations, thereby reducing the risk of non-compliance, penalties, and employee disputes.

Description of Work:
This position is a member of the Office of the State Controller's Audit, Risk, and Compliance Services team which advocates for fiscal accountability and transparency in government, ensures compliance with applicable laws and regulations, recovers funds which would otherwise not be available for the benefit of the State’s citizens and provide for the continuity of the State’s fiscal operations. This position functions in a professional team environment that provides independent and objective assurance over the design and operation of controls to internal and external stakeholders and provides consultative assistance and educational awareness/training related to regulatory and tax compliance. Specific position responsibilities:

Internal Audit Program
The internal audit program provides executive leadership with an independent objective assurance and consulting activity that is guided by a philosophy of adding value to improve the operations of the Office of the State Controller. Internal Audit assists in accomplishing OSC’s objectives by bringing a systematic and disciplined approach to evaluate and improve the effectiveness of the organization’s governance, risk management, and internal control.

The Information Technology–Information Systems (IT-IS) Compliance Auditor is responsible for evaluating, monitoring, and enhancing information technology and information systems controls to ensure compliance with regulatory requirements, internal policies, and industry standards. This role provides independent assurance over system integrity, data accuracy, security, and automated processes supporting critical business functions such as payroll, benefits administration, financial reporting, and HR systems. The IT-IS auditor will be primarily assigned to review compliance for NC Flex benefits, which consist of multiple plan deductions and administrative platforms.

This position will develop and execute assurance and advisory audit services in accordance with current Standards for the Professional Practice of Internal Auditing issued by the Institute for Internal Auditors or, if appropriate, Generally Accepted Government Auditing Standards issued by the United States Government Accountability Office to include:

IT & Systems Compliance
• Assess and audit IT general controls (ITGCs), application controls, and automated processes across enterprise systems for the interfaced NC Flex Benefits (e.g., HRIS, payroll, benefits, financial systems).
• Ensure compliance with applicable regulations and frameworks such as NIST, COBIT, ISO 27001, and internal control standards.
• Evaluate system configurations, interfaces, data flows, and integrations for accuracy, completeness, and reliability.
Audit & Risk Management
• Plan and execute IT and systems compliance audits, including risk assessments, control testing, and documentation of results.
• Identify control gaps, system weaknesses, and compliance risks; develop actionable remediation recommendations.
• Support internal and external audits by providing evidence, walkthroughs, and control documentation.

Access & Security Controls
• Test user access controls, role-based permissions, and segregation of duties.
• Assess change management processes to ensure system changes are authorized, tested, and documented.
• Review audit trails, logging mechanisms, and exception reporting for compliance and data integrity.
Process & Data Integrity
• Validate automated calculations, reconciliations, and exception handling within payroll and benefit deduction processes.
• Ensure data accuracy and consistency across system interfaces and reporting outputs.
• Evaluate end-to-end process flows from data input through financial or operational reporting.
Governance & Continuous Improvement
• Maintain audit documentation, compliance reports, and metrics for management review.
• Collaborate with IT, HR, Finance, and Compliance teams to strengthen controls and improve system governance.
• Stay current on regulatory changes, emerging risks, and best practices in IT and systems auditing.
• This position may, from time-to-time, provide assistance on ad-hoc special projects/other programs and may also be requested to perform research inquiries, analyses and investigations or prepare correspondence and presentations.

Knowledge Skills and Abilities/Management Preferences

Knowledge:

• Extensive knowledge of professional accounting and auditing standards, with the ability to apply them in complex information systems audit environments.
• Advanced knowledge of IT governance and security frameworks, including the application of standards from the National Institute of Standards and Technology (NIST) and the COBIT governance framework developed by ISACA to evaluate and strengthen organizational IT controls.
• Expert knowledge of information technology control practices, including information technology general controls (ITGCs), application controls, cybersecurity practices, and IT risk management techniques.
• Strong knowledge of risk assessment methodologies and internal control frameworks, including statistical sampling techniques used in audit engagements.
• Knowledge of fraud detection, prevention, and investigative techniques, including the use of data analytics to identify anomalies and control weaknesses.
• Working knowledge of state and federal laws, regulatory requirements, and industry standards, including familiarity with the operations and governance structures of the Government of North Carolina.
• Knowledge of project management methodologies and techniques for planning, coordinating, and monitoring complex audit projects.

Skills:

• Demonstrated skill in data extraction, transformation, and analysis to support audit activities and generate actionable insights.
• Proficiency in data analysis and reporting tools, including Microsoft Word, Microsoft Excel, Microsoft PowerPoint, and Microsoft Power BI for documentation, analysis, visualization, and reporting.
• Ability to learn and apply advanced analytical tools and scripting/programming techniques for data extraction, automation, and visualization.
• Strong analytical, problem-solving, and critical thinking skills to evaluate information, identify root causes of issues, and develop effective solutions.

Abilities:

• Ability to plan, organize, and execute efficient audit or compliance review work programs, including establishing effective procedures to accomplish assigned duties.
• Ability to conduct and support information technology risk assessments, including identifying threats, evaluating vulnerabilities, and recommending mitigation strategies.
• Ability to manage multiple priorities and deadlines while maintaining exceptional attention to detail and delivering high-quality results within established timeframes.
• Ability to communicate effectively both orally and in writing, including presenting complex technical information clearly to diverse audiences.
• Ability to build collaborative relationships and work effectively in team environments, including working with individuals across organizational units and outside formal authority structures to achieve organizational goals.

Note to Applicant:   Any job-related Knowledge, Skills, and Abilities that you have must be clearly documented in your application to be considered for the Most Qualified applicant pool.

MANAGEMENT PREFERENCES:

Licenses preferred:

Preference will be given to applicants who hold one or more of the following certifications:   Certified Public Accountant with audit focus, Certified Internal Auditor, Certified Internal Controls Auditor; Certified Information Systems Auditor, or Certified Fraud Examiner.

System experience preferred: 

Applicants with experience in SAP Payroll and Oracle Fusion will be given preference.

Minimum Education and Experience

Some state job postings say you can qualify by an “equivalent combination of education and experience.” If that language appears below, then you may qualify through EITHER years of education OR years of directly related experience, OR a combination of both. See the Education and Experience Equivalency Guide for details.

Bachelor’s degree in accounting, or a degree in business administration, public administration or a related discipline from an appropriately accredited institution with 18 credit hours of accounting coursework; and three years of accounting experience or an equivalent combination of education and experience.

EEO Statement

The State of North Carolina is an Equal Employment Opportunity Employer and dedicated to providing employees with a work environment free from all forms of unlawful employment discrimination, harassment, or retaliation. The state provides reasonable accommodation to employees and applicants with disabilities; known limitations related to pregnancy, childbirth, or related medical conditions; and for religious beliefs, observances, and practices.

Recruiter:

Pamela Denise Hamm

Recruiter Email:

PAMELA.HAMM@NCOSC.GOV