IT Internal Audit Manager

POSITION SUMMARY

The IT Internal Audit Manager will be responsible for supporting the implementation of SOX 404 compliance across multiple decentralized IT systems. This individual will play a key role in designing evaluating and testing IT general controls (ITGCs) application controls and IT-dependent controls as part of the SOX framework. Over time this role will evolve into a broader IT audit function including assessments of cybersecurity data governance system development and IT operations.

CORE FUNCTIONS

SOX Implementation:

Partner with management and business units to assess IT environments across decentralized systems and identify SOX-relevant applications and infrastructure.

Develop and implement ITGC processes including logical access change management and operations across various platforms.

Assist in documenting control objectives processes and test procedures.

Evaluate the design and operating effectiveness of IT controls.

Coordinate with external auditors on scoping walkthroughs and testing of IT controls.

Identify gaps and recommend remediation plans to strengthen the IT control environment.

Provide guidance and training to system owners and control owners on SOX requirements.

Internal Audit:

Plan execute and lead risk-based IT audits and integrated audits.

Assess the design and effectiveness of IT security system development practices cloud controls and data governance.

Monitor compliance with internal policies industry best practices and regulatory requirements.

Stay abreast of emerging IT risks and contribute to the annual audit risk assessment process.

Collaborate with operational audit teams on IT-related audit issues.

Present audit findings and recommendations to senior management and follow up on remediation progress.

QUALIFICATIONS & REQUIREMENTS

Education and Experience

Bachelors degree in Information Systems Computer Science Accounting or related field.

7 of experience in IT audit with a strong focus on SOX ITGC implementation and controls testing.

Experience working with or managing external auditors during SOX audits.

Professional certifications such as CISA CPA or CIA preferred.

Skills Abilities and Knowledge

Excellent communication project management and interpersonal skills.

Ability to work independently and in cross-functional teams.

Familiarity with decentralized system environments ERP systems cloud platforms and third-party service providers.

Strong understanding of COSO and COBIT frameworks.

Strong understanding of business processes and IT interdependencies.

Travel

Occasional travel may be required.

COMPETENCIES

Synthesizes complex or diverse information; Collects and researches data; Uses intuition and experience to complement data; Designs workflows and procedures.

Collaboration with stakeholders at all levels of the organization. Exhibits objectivity and openness to other views; Gives and welcomes feedback; Contributes to building a positive team spirit; Puts success of team above own interests; Supports everyones efforts to succeed.

Adapts to changes in the work environment; Manages competing demands; Changes approach or method to best fit the situation; Able to deal with frequent change delays or unexpected events.

Demonstrates accuracy and thoroughness; Looks for ways to improve and promote quality; Applies feedback to improve performance; Monitors own work to ensure quality.

SUPERVISOR RESPONSIBILITIES

: working team member who coordinates supports trains and is a knowledge resource for other team members. No direct reports or supervisory responsibility.

PHYSICAL REQUIREMENTS

This position is subject to sedentary work; exerting up to 10 pounds of force occasionally and/or a negligible amount of force frequently or constantly to lift carry push pull or otherwise move objects. Sedentary work involved sitting most of the time. Walking and standing are required only occasionally.

Physical Activities

This position is subject to the following physical activities: talking hearing and the use of hands wrists or fingers in repetitive motions.

Visual Acuity

The worker is required to have close visual acuity to perform an activity such as preparing and analyzing data and figures; transcribing; viewing a computer terminal; expansive reading; visual inspection involving small defects small parts and/or operation of machines (including inspection); using measurement devices; and/or assembly of fabrication of parts at distances close to the eyes.

Working Conditions

This position operates in a professional office environment. This role routinely uses standard office equipment.