IT Audit Manager

About The Position

Requirements

• Bachelor’s degree with focus in Information Systems, Computer Science, or related discipline preferred.
• 7+ years of progressive IT audit or relevant experience; 3+ years in leadership roles. Experience in the energy industry (e.g., upstream) is a plus.
• Must have extensive knowledge of SOX compliance, IT general controls, and IT operations and governance.
• Familiarity with AI and cloud platforms and data governance processes.
• Excellent interpersonal skills with the ability to engage and collaborate in a team environment and with all levels of management.
• Strong leadership skills to direct, mentor, and guide audit staff and contractors.
• Strong knowledge of IIA Global Standards, Internal Audit methodologies, SOX compliance requirements, COSO Framework, NIST Framework, GAAP, and SEC regulations.
• Excellent problem solving, analytical, and decision-making acumen.
• Proficiency in project management and ability to manage multiple priorities.
• Works well independently with minimal supervision and with extensive latitude for innovative thinking and independent judgment.
• Experience with Governance, Risk, and Compliance software and tools (i.e., AuditBoard).

Nice To Haves

• Experience in the energy industry (e.g., upstream) is a plus.
• Hands-on experience with system implementations and external audit coordination is a plus.
• Certification related to IT security or auditing in one or more of the followings preferred not required: CISA, CISSP, CISM.

Responsibilities

• Lead the planning, execution, and reporting of IT audit engagements across infrastructure, applications, ITGCs, and cybersecurity.
• Manage third party professional services firm who conduct IT SOX control testing, including ITGCs, automated controls (ITACs), IPE, and system access reviews across ERP and key business systems.
• Assess system changes, configurations, and integrations to ensure compliance with IT policies and SOX requirements.
• Identify control deficiencies, root causes, and actionable recommendations, ensuring timely management remediation.
• Support coordination with external auditors to align on scope, approach, and reliance opportunities.
• Evaluate IT governance and control maturity, providing insights on opportunities to enhance policies, processes, and automation.
• Support audits and advisory reviews over major initiatives such as system implementations, cloud transformation, AI enablement, and system decommissioning.
• Build strong partnerships with IT, Accounting, Finance, Operations, and other functions to promote a culture of risk awareness and control excellence.
• Communicate audit results, risk insights, and recommendations clearly to management.
• Provide development and mentoring to auditors.