IT Internal Audit Manager

About The Position

Requirements

• Bachelor’s degree in information systems, accounting, finance or related field
• 5 - 8+ years in consulting/professional services/audit with hands-on technology audit delivery.
• Experience identifying and testing IT controls across technology domains including but not limited to operating systems, databases, network devices, cloud platforms, and SaaS environments.
• Comfort working in rapidly changing technology environments and transformation programs (ERP, cloud, data platforms) with realtime risk insights.
• Experience supporting major transformation initiatives (such as application modernization initiatives, cloud migration, and data platform build-out) while delivering assurance and real-time risk insights
• Experience developing continuous auditing solutions and integrating results into audit workflows.
• Experience using enterprise LLMs to streamline audit tasks such as documentation review, evidence analysis, issue drafting, and risk categorization.
• Skilled in applying AI and ML techniques to identify anomalies and classify data for improved testing and risk insights.
• Experience validating AI models for audit analytics, including bias/fairness checks, drift monitoring, and explainability.
• Experience with CI/CD pipelines, including approvals, quality gates, artifact integrity, testing standards, and environment promotion.
• Understanding of cloud security best practices (IAM, monitoring, encryption) and secure configurations in Azure and AWS.
• Experience using Power BI or Tableau to create interactive dashboards, analyze trends, and track key risk metrics (e.g., MTTR, false positives, repeat violations, control coverage).
• Working knowledge of NIST CSF, ISO 27001, COBIT, COSO; understanding of regulatory/privacy requirements relevant to IT and cybersecurity.
• Exceptional written and verbal communication; ability to translate technical findings into business impacts and actionable recommendations.
• Strong stakeholder engagement across CDK business partners and stakeholders.

Nice To Haves

• Professional certification preferred: CISA, CISM, CISSP, CIA.

Responsibilities

• Lead end-to-end audits: Scope, plan, and execute risk based IT audits; develop work programs; prepare workpapers; complete design and operating effectiveness testing; and deliver clear, concise reports
• Operate in rapidly evolving technology domains: Perform audits in rapidly evolving areas including cybersecurity, cloud architecture (Azure/AWS), and artificial intelligence.
• Engage in Agile delivery: Align control testing to internal sprint cadence; participate in internal sprint planning, standups, and retros; deliver iterative reporting and real time risk insights.
• Drive remediation & improvement: Quantify risks, identify root causes, recommend realistic improvements to processes and controls that reduce risk, improve efficiency, or generate cost savings; monitor progress to closure.
• Communicate with impact: Present complex ideas simply and actionably to stakeholders at all levels; maintain strong relationships across the CDK environment.
• Apply AI (Artificial Intelligence)/Machine Learning (ML) techniques: Utilize AI and machine learning to detect unusual patterns and classify data for more effective audit testing. Keep clear records of assumptions and limits and document human review for accuracy.
• Support major initiatives: Evaluate significant corporate implementations and transformations (application modernization, cloud migrations, data platform buildouts, etc.) to confirm controls are designed and operating effectively.
• Model compliance & values: Follow CDK Global policies and procedures; complete mandatory compliance tasks and acknowledgements; meet/exceed performance expectations; role model company values and leadership behaviors.

Benefits

• Paid Time Off (PTO)
• 401K Matching Program
• Tuition Reimbursement
• Medical, dental, and vision benefits