IT Audit Manager

About The Position

Requirements

• Must currently reside in the OKC metro area
• Bachelor's degree from four-year college or university in Accounting, Auditing, Management or Insurance; commensurate experience accepted in lieu of degree
• 10 years experience: 5 years of audit or IT security and 5 years of IT experience
• Certified Information Systems Auditor (CISA) required
• Experience in audit planning, performing complex audit projects and supervision of projects
• Experience in risk analysis and corrective measures to mitigate business risks
• Experience in identifying and analyzing control framework established to protect corporate assets
• Knowledge of information security principles and best practices
• Thorough knowledge and experience with General Computer Controls and Application Controls, including Change Control, Systems Development Life Cycle, Application Security, Disaster Recovery, Data Warehousing, Project Management, Operating Systems and Databases
• Experience with COBIT, IIA, MAR or SOX, COSO, NIST, PCI, HIPPA and ISO 27000 series frameworks
• Strong oral and written communication skills, including outstanding interpersonal and consultative skills
• Demonstrates a high level of administrative competence and excels in analyzing and adjusting organization procedures for maximum efficiency
• Knowledge of professional standards required to perform audits, industry best practices and regulatory/criminal law related to industry
• Self motivated, ability to prioritize and ability to perform multiple tasks related to responsibilities
• Understanding of Company and affiliates structure, products and systems
• Ability to initiate and coordinate activities to meet goals and objectives, achieve delivery of annual audit plan, and stay within established monetary and time budgets
• Proven leadership, motivational, mentoring and training skills
• Good and reasonable judgement exhibited by prior performance
• Diplomacy
• Ability to diffuse and resolve volatile situations and achieve a positive solution

Nice To Haves

• CISSP, CISM, CRISC, CIA or other audit or information security-related certifications preferred
• General project management experience a plus

Responsibilities

• Developing the annual risk-based IT audit plan
• Lead the execution of complex audits, including IT general and application controls, cybersecurity, data governance, AI governance, and emerging technology risk assessments
• Evaluate the design and operating effectiveness of infrastructure, system, and business controls related to operational, compliance, financial reporting, and technology-enabled business processes
• Manage IT Audit staff and external resources assigned to technology-focused audit engagements
• Assigning and monitoring audit progression
• Approving audit programs
• Reviewing workpapers and findings
• Drafting and finalizing audit reports
• Managing engagement budgets
• Ensuring audits are executed in accordance with professional standards and departmental methodology
• Act as a key relationship manager between Internal Audit and IT, data, and business stakeholders
• Participate in IT and enterprise governance forums
• Present audit results, risk insights, and emerging technology observations to senior and executive management

Benefits

• Great Place to Work for All!