IT Audit Manager

About The Position

Requirements

• Bachelor’s degree in Information Systems, Computer Science, Accounting, or related field
• 5+ years of audit, risk, or information security experience
• Knowledge of SOX, COBIT, NIST and/or other relevant frameworks
• Experience with cloud-based environments and SaaS risk considerations
• Professional certification required (CISA required)
• Strong analytical and risk assessment skills
• Ability to build strategic alliances
• Deep understanding of ITGCs, automated controls and ERP environments
• Effective communication and executive presentation skills
• Ability to manage multiple priorities and deadlines
• Strong leadership and team development capabilities

Nice To Haves

• Experience with ERP security configuration, role design and SoD analysis
• Experience with data analytics tools
• Familiarity with cloud-based GRC platforms
• Familiarity with SOC reports

Responsibilities

• Lead the planning, execution, and reporting of IT audits and business audits, including risk-based audit planning and scoping.
• Evaluate the design and operating effectiveness of IT general controls (ITGCs), application controls, and automated business process controls.
• Conduct audits of enterprise systems, focusing on access controls, segregation of duties (SoD), configuration settings, change management, and data integrity.
• Partner with the internal IT organization and serve as a collaborator and in support of the department’s goals and initiatives.
• Utilize cloud-based GRC platform to manage audit workflows, workpapers, issue tracking, and reporting dashboards.
• Assess cybersecurity controls, infrastructure security, cloud environments, and third-party/vendor risk management.
• Partner with business stakeholders to support SOX compliance and regulatory requirements.
• Identify control gaps and provide practical, risk-based recommendations for remediation.
• Monitor remediation efforts and validate corrective actions.
• Manage and mentor audit staff, including reviewing workpapers and providing performance feedback.
• Prepare audit reports and present findings to Senior Management and Executive Leadership.
• Stay current on emerging technology risks, audit standards and regulatory developments.
• Partner and serve as the point of contact with external auditors.