IT Audit Manager | Internal Audit | Risk Advisory

CBIZ•Tulsa, OK

1d•Hybrid

About The Position

The CBIZ Risk & Advisory Services (RAS) group offers consulting, outsourcing and co-sourcing services to public and private companies of all sizes by providing national caliber expertise combined with highly personalized service. As part of CBIZ, (NYSE: CBZ), one of the top financial services providers in the country, the Risk & Advisory Services group provides internal audit, Sarbanes-Oxley compliance, cybersecurity, supply chain management, vendor management, business continuity planning, and risk consulting services to leading businesses across North America. The CBIZ RAS group is seeking an experienced IT Audit Manager to lead and execute internal audits with a focus on IT General Controls (ITGCs) and Sarbanes-Oxley (SOX) IT compliance. This role manages the planning, execution, and reporting of IT audits for a diverse client base and reports to the IT Audit Senior Manager or Managing Director, with a hybrid work schedule. The ideal candidate will bring strong client service skills, technical expertise, and leadership capabilities, along with the ability to work cross-functionally with IT and business stakeholders, communicating clearly and professionally with both clients and team members. As the IT Audit Manager, you will lead interdependent teams responsible for delivering high-quality IT internal audit and SOX compliance engagements. You’ll serve as an influential member of our Information Technology consulting practice, collaborating closely with colleagues to help clients mitigate business, financial reporting, and IT risks. In addition to managing client engagements, you will play a key role in training, mentoring, and developing staff, helping to build a high-performing audit team and promote a culture of continuous learning and professional growth. As an experienced team leader, you will develop superior relationships with the leadership and personnel of our client organizations to directly impact their success by delivering high quality services. You’ll have the opportunity to work with some of the most entrepreneurial and innovative companies in the country – organizations that are driving growth and shaping the future of business in America.

Requirements

Bachelor's degree
5 years of experience in public accounting or related field
3 years supervisory experience
Must have active CPA or equivalent certification
Ability to manage all aspects of client engagements
Demonstrated ability to communicate verbally and in writing throughout all levels of organization, both internally and externally
Must be able to travel based on client and business needs
Proficient use of applicable technology

Nice To Haves

Relevant BA/BS degree
6 years of relevant work experience in public accounting or publicly traded organization’s Internal Audit or IT department
CISA, CIA or similar relevant certification
Strong knowledge of IT risk management frameworks (e.g., COSO, COBIT) including related regulatory compliance requirements (Sarbanes-Oxley, SOC)
Experience developing and managing complex controls frameworks.
Deep understanding of ERP systems, including general computer and application controls (ITGC, ITAC)
Background and experience in reviewing and performing audits (document process flows/narratives, assess design/operational effectiveness of internal controls over)
Knowledge of risk remediation/mitigation/control processes.
Experience in related Governance, Risk or Compliance function or role, or related IT Audit/Assessments

Responsibilities

Lead and manage all phases of IT internal audit and IT SOX compliance engagements, from planning through reporting, ensuring timely delivery, high-quality results and alignment with internal audit standards and stakeholder expectations.
Act as the primary liaison with internal teams, client stakeholders, and external auditors.
Serve as a trusted advisor by communicating clearly, resolving issues proactively, and offering practical, risk-based solutions.
Oversee control testing and audit execution.
Manage team responsibilities for walkthroughs, evidence collection, and documentation updates (e.g., risk and control matrices, narratives, test plans).
Assess control design and operating effectiveness, identify gaps or improvement opportunities, and support timely remediation.
Communicate findings and recommendations in a clear and professional manner.
Supervise and develop audit staff. Provide daily oversight, assign responsibilities, review workpapers and test results, and deliver constructive feedback.
Coordinate audit resources across multiple engagements and multiple clients, balancing workloads and adjusting assignments to meet project demands and timelines.
Foster a collaborative, accountable, and growth-oriented team culture through mentoring, training, formal performance development, and performance appraisals.
Ensure quality and consistency in audit delivery.
Apply internal audit methodology, frameworks and tools consistently across all engagements.
Maintain high-quality documentation that meets professional and organizational standards.
Champion adherence to frameworks, tools, and best practices.
Drive process improvement and innovation.
Contribute to the evolution of audit programs, templates, and tools.
Stay informed on emerging technology risks and contribute to enhancements in audit automation, data analytics, and continuous risk monitoring.