Director - SOX, ERM and Internal Audit

Sabre Corporation•Dallas, TX

1d•Hybrid

About The Position

The Internal Audit and Enterprise Risk Management team performs operational audits, has extensive purview over the Sarbanes Oxley testing program, and oversees the Enterprise Risk Management processes for SABRE Corporation. The function is part of SABRE Corporation’s broader Finance team, reporting to the Chief Financial Officer administratively and to the Audit Committee of the Board of Directors functionally. Our vision is to proactively guide our Sabre business partners with innovative, best in class audit and risk management practices. Our strategy focuses on 1) talent development, 2) modernization of our audit and risk activities, 3) providing a balanced portfolio of work which provides assurance and advisory services to SABRE, and 4) being a trusted advisor to management and the Board of Directors. As the Internal Audit Director, you are a people manager who directly manages the work of others in pursuit of achieving the Global Audit and Risk team’s strategic priorities. The Audit Director works with management to effectively build the work plan across multiple areas (e.g., SOX, Ops Audit) and is responsible for the successful execution of those engagements. This role is based in the Dallas-Ft. Worth metro area and reports to the Sr. Director of Internal Audit in a flexible hybrid role. You are an intellectually curious person who wants to work in a complex and evolving technology environment. In this role, you will have opportunities to expand your skills and grow a career at SABRE, where we make travel happen.

Requirements

Four-year college degree
A minimum of fifteen to eighteen years of experience in the internal audit profession
Hold an active certification as a Certified Information Systems Auditor (CISA), Certified Internal Auditor (CIA), or a similar designation which shows commitment to the profession
Advanced knowledge of auditing practices and standards, trends, and best practices
Advanced experience with internal control frameworks such as COSO, NIST (National Institute of Standards and Technology), COBIT, etc.
Experience with technology and cybersecurity concepts such as Identity Access Management, vulnerability management, software development lifecycle, change management, Information Technology General Controls, etc.
Advanced communication skills, both written and verbal; experience with writing detailed audit reports, delivering results to management at all levels of the organization
Excellent program/portfolio management skills
Experience working within a team to deliver a high-quality project

Nice To Haves

Internal Audit experience in the technology industry
Experience in data analytics and automation
Experience with data privacy
Experience with Fraud risk management
Experience with artificial intelligence within the audit process
Post-graduate degree

Responsibilities

Lead a dynamic risk assessment process which is used to select risk-based audit and advisory engagements.
Oversee operational audits with a focus on quality and effectiveness which adheres to Sabre’s internal audit processes.
Communicate audit results to management and advise/educate management on control deficiency remediation and/or updates, when needed.
Assist in the development and delivery of operational audit materials for the Audit Committee.
Oversee the administration of the SOX program or other assigned activities in the program, as needed.
Effectively partner with the external auditor on scheduling, business partner engagement, and alignment on deficiencies and their associated remediation.
Train control owners on their responsibilities within the program to drive understanding of their compliance role.
Deliver innovation in testing approaches.
Assist in the development and delivery of Audit Committee SOX materials.
Provide constructive feedback on performance for both audit projects and other audit activities.
Develop and lead annual audit training for the internal audit team and others, as necessary, to improve skills and knowledge.
Collaborate with the Audit and Risk leadership team on people development and career development for auditors across the function.
Proactively ask for and deliver feedback across stakeholder groups.
Participate in the ERM risk assessment process, ‘connecting the dots’ between ERM risks and operational audit opportunities.
Research risk topics, both internally and externally, in the identification of enterprise risks.
Assist in the assessment of risks within the COSO framework, leveraging provided rubrics.
Provide ongoing business relationship development which monitors risks to the achievement of objectives over time.
Develop reporting on risks for the Audit Committee and the Executive Team.
Assist in the development and delivery of Audit Committee ERM materials.
Develop and deliver training for audit and risk staff as well as business partners, when required.
Participate in investigations, as needed, directing the staff on their deliverables.
Contribute to budget and staffing discussions, as needed.
Contribute to the development and delivery of functional strategies and their related initiatives.