Company Summary Statement

As one of the largest investor-owned utility companies in the United States, PPL Corporation (NYSE: PPL), is committed to creating long-term, sustainable value for our 3.5 million customers, our shareowners and the communities we serve. Our high-performing regulated utilities — PPL Electric Utilities, Louisville Gas and Electric, Kentucky Utilities and Rhode Island Energy — provide an outstanding experience for our customers, consistently ranking among the best utilities in the nation. PPL’s companies are also addressing challenges head-on by investing in new infrastructure and technology that is creating a smarter, more reliable and resilient energy grid. We are committed to doing our part to advance a cleaner energy future and drive innovation that enables us to achieve net-zero carbon emissions by 2050 while maintaining energy reliability and affordability for the customers and communities we serve. PPL is a positive force in the cities and towns where we do business, providing support for programs and organizations that empower the success of future generations by helping to build and maintain strong, diverse communities today.

Overview

Under general direction, the Senior IT Auditor is responsible for providing relatively complex audit and advisory services for PPL Corporation and its subsidiaries’ information systems. This role is responsible for executing the end-to-end audit process with a focus on risk management, governance and control while adding value and improving Company operations. Work is completed independently with minimal guidance using knowledge of IT and cybersecurity risks and internal controls to effectively perform job duties. This job is a senior-skill level without formal supervisory responsibility. May provide guidance and direction to other PPL employees to support production of high quality, timely and cost-effective audit results.

Note: This position will report in office on a hybrid schedule and can be based out of PPL's corporate offices located in Louisville, KY or Allentown, PA or Providence, RI.

Responsibilities

• Performs relatively complex audit assignments by taking the lead in areas including strategic IT objectives, cybersecurity, IT Infrastructure operations, and ICS/OT systems.

• Performs critical business analysis of issues identified during an audit assignment, including identifying root cause(s) and identifying value-added opportunities for improvement, and effectively communicates the complexities to management in a timely manner.

• Reports and communicates, verbally and in writing, the results of audit assignments to IT Management.

• Works collaboratively with IT Management to help ensure action plans are implemented timely and appropriately to address areas identified as needing improvement.

• Prepares quality and timely workpapers supporting the results of audit-related testing and analysis.

• Performs ongoing business risk monitoring activities to help ensure comprehensive coverage of key IT/Cybersecurity risks.

• Provides functional advice or training to less-experienced audit positions. Acts as a resource for colleagues with less experience. May direct the work of other staff members.

• Continually increases knowledge of emerging IT/Cybersecurity trends and technologies and applies knowledge to enhance the internal control environment of their audit customers.

• All other duties and projects as assigned.

Qualifications

Basic Qualifications

• Bachelor's Degree with 5 years of audit or IT/Cybersecurity experience.

• Ability to assess IT/Cybersecurity risks and determine which are the most pressing versus those that can be addressed at a later time.

• Ability to analyze various aspects of an organization’s information system and identify key risks and control gaps.

• Requires effective, written, verbal, and interpersonal communications skills.

• Working knowledge of IT security and infrastructure and related internal controls.

• Demonstrated ability to lead projects and assignments and perform multiple activities concurrently.

• Technical ability to analyze data using various technologies.

• Professional certification (e.g., CISA, CISM, CRISC, CISSP). Required to obtain certification within 3 years of the job.

• Travel as required.

Preferred Qualifications

• MBA or other advanced degree.

• Highly motivated self-starter with excellent project management skills.

• Knowledge of energy utility operations.

Basic Qualifications

• Bachelor's Degree with 5 years of audit or IT/Cybersecurity experience.

• Ability to assess IT/Cybersecurity risks and determine which are the most pressing versus those that can be addressed at a later time.

• Ability to analyze various aspects of an organization’s information system and identify key risks and control gaps.

• Requires effective, written, verbal, and interpersonal communications skills.

• Working knowledge of IT security and infrastructure and related internal controls.

• Demonstrated ability to lead projects and assignments and perform multiple activities concurrently.

• Technical ability to analyze data using various technologies.

• Professional certification (e.g., CISA, CISM, CRISC, CISSP). Required to obtain certification within 3 years of the job.

• Travel as required.

Preferred Qualifications

• MBA or other advanced degree.

• Highly motivated self-starter with excellent project management skills.

• Knowledge of energy utility operations.

• Performs relatively complex audit assignments by taking the lead in areas including strategic IT objectives, cybersecurity, IT Infrastructure operations, and ICS/OT systems.

• Performs critical business analysis of issues identified during an audit assignment, including identifying root cause(s) and identifying value-added opportunities for improvement, and effectively communicates the complexities to management in a timely manner.

• Reports and communicates, verbally and in writing, the results of audit assignments to IT Management.

• Works collaboratively with IT Management to help ensure action plans are implemented timely and appropriately to address areas identified as needing improvement.

• Prepares quality and timely workpapers supporting the results of audit-related testing and analysis.

• Performs ongoing business risk monitoring activities to help ensure comprehensive coverage of key IT/Cybersecurity risks.

• Provides functional advice or training to less-experienced audit positions. Acts as a resource for colleagues with less experience. May direct the work of other staff members.

• Continually increases knowledge of emerging IT/Cybersecurity trends and technologies and applies knowledge to enhance the internal control environment of their audit customers.

• All other duties and projects as assigned.

Remote Work

The company reserves the right to determine if this position will be assigned to work on-site, remotely, or a combination of both. Assigned work location may change. In the case of remote work, physical presence in the office/on-site may be required to engage in face-to-face interaction and coordination of work among direct reports and co-workers.

Equal Employment Opportunity

Our company is an equal opportunity, affirmative action employer dedicated to diversity and the strength it brings to the workplace. All qualified applicants will receive consideration for employment without regard to race, color, age, religion, sex, national origin, protected veteran status, sexual orientation, gender identify, genetic information, disability status, or any other protected characteristic.