The IT Audit Manager manages audit teams in the performance of IT operational and compliance audits (with additional exposure to certain nonIT audits) according to acceptable audit standards and within prescribed timelines and budgets. The IT Audit Manager also provides supervision coaching and development to senior and staff level auditors. The IT Audit Manager will report to the Internal Audit Senior Director.
Responsibilities:
- Perform risk assessments across our organizations information technology landscape and global technology project portfolio to determine and maintain multiyear audit priorities with a focus on emerging risks (e.g. cybersecurity cloud)
- Use Agile Internal Audit methodology to manage lead auditors in the planning and of the IT audit strategy for the global business including assurance and advisory engagements
- Review workpapers including planning documents and reports to ensure clear identification of risks and corresponding issues / gap assessments
- Communicate findings timely and collaborate with process owners to develop creative yet practical action plans
- Manage the followup and reporting of findings until they are remediated
- Provide supervision coaching and development to senior and staff auditors including determining baseline IT skills required of the broader Internal Audit team
- Communicate and advise senior executive management of key/emerging risks periodically as identified through risk assessment procedures
- Participate and lead department continuous improvement projects
- Maintain professional certifications
Qualifications:
- Bachelor or advanced degree in computer science information systems accounting or related field
- 5 or more years of experience in some combination of public accounting internal audit or a risk advisory role with a focus on IT
- Proficient understanding of applying auditing principles and practices to common risk frameworks (e.g. COBIT NIST) and ability to advise on leading industry/business practices
- Excellent listening verbal written and presentation skills with the ability to communicate effectively within several levels of the company including executive leadership
- CISA or comparable professional certification (e.g. CISM CISSP)
- Experience with cyber security or information security audits
Required Experience:
Manager