Manager/Director, IT Internal Audit

About The Position

Requirements

• A minimum of five years of experience working within an internal audit, IT risk, or IT compliance function as an internal employee or as part of a professional services firm
• Bachelor's degree in an appropriate field from an accredited college/university; CISA, PML CISSP, or CRISC (or similar) certifications preferred; Masters degree from an accredited college/university preferred
• Prior knowledge leading and executing IT audit, IT internal control, and IT risk consulting engagements, leveraging IT governance and control frameworks such as COBIT, NIST CSF, NIST 800-53, and ITIL and proficiency in core requirements and methodologies for SOX internal control programs
• Experience with IT risk management operating models, three lines-of-defense frameworks, integrated risk management practices, and/or risk intelligence capabilities
• Proficiency in executing projects in accordance with leading practice project management principles
• Strong leadership and communication skills, technical knowledge, and the ability to write at a publication quality level in order to communicate findings and recommendations to the clients and senior management team
• Ability to travel as necessary
• Must be authorized to work in the U.S. without the need for employment-based visa sponsorship now or in the future. KPMG LLP will not sponsor applicants for U.S. work visa status for this opportunity (no sponsorship is available for H-1B, L-1, TN, O-1, E-3, H-1B1, F-1, J-1, OPT, CPT or any other employment-based visa)
• A minimum of eight years of relevant experience
• Demonstrated ability to lead project engagements, identify business opportunities, attract new business, and build lasting professional relationships with senior client executives

Responsibilities

• Design, coordinate, and execute the day-to-day activities related to risk, control, compliance and internal audit client engagements in the following areas: IT strategy and governance, IT operations, business continuity and disaster recovery, network and infrastructure security, cybersecurity, cloud and third parties, data management and analytics, emerging technology and digital solutions, automation (robotics, cognitive, etc.), IT and transformation programs and projects, GITCs and application controls, and regulatory/compliance requirements
• Design, coordinate, and execute the day-to-day activities related to client engagements in the following areas: IT risk, control, compliance, or audit program strategy, operations, and governance, including integration across client risk ecosystems; related technology solution situation, needs, and benefits; and related risk data, analytics, intelligence, and reportingFinancial Services, Consumer and Retail, Industry Manufacturing, Technology industries
• Review clients; IT processes, risk, controls and compliance against leading practice, industry, or client frameworks, and assess capability maturity, identify gaps in design and execution, and communicate issues and recommendations to engagement leads and client senior management
• Work with client senior management, assess, design, and implement new IT risk and control frameworks, sustainable solutions (including applying knowledge of governance, risk and compliance tools), operating processes and people models to address key and evolving risks, as necessary.
• Plan and lead (or delegate) kickoff, status, and closing meetings with engagement team and clients; supervise and provide performance management for staff resources working on assigned engagements
• Complete comprehensive executive summaries and final reports and deliver to client senior management and document and review engagement workpapers in accordance with KPMG requirements and common industry practice for internal audit and risk consulting client engagements; lead efforts in developing and contributing content to related KPMG knowledge bases and internal practice development initiatives, including but not limited to research, thought leadership, marketing collateral, and share forums/peer exchange materials
• Provide oversight and leadership to KPMG team members, managing quality and client satisfaction at it relates deliverables, project plans, and engagement team performance
• Support proposal and business development activities by assisting in the identification of new target clients, building business relationships with key executives, and developing/presenting proposals, working independently and cross-functionally to combine Technology Risk Management capabilities with other KPMG areas of practice to address client needs
• Keep current with clients, industries, peers, and the wider marketplace (e.g., alliances, vendors, etc.) to understand and innovate related IT risk, control, compliance, and audit operating models, capabilities, and solutions, and contribute to industry and regulatory publications, writing professional and thought leadership articles, and speaking at related conferences and seminars

Benefits

• KPMG offers a comprehensive compensation and benefits package.
• KPMG is proud to offer a comprehensive, competitive benefits package, with options designed to help you make the best decisions for yourself, your family, and your lifestyle.
• Our Total Rewards package includes a variety of medical and dental plans, vision coverage, disability and life insurance, 401(k) plans, and a robust suite of personal well-being benefits to support your mental health.
• Depending on job classification, standard work hours, and years of service, KPMG provides Personal Time Off per fiscal year.
• Additionally, each year KPMG publishes a calendar of holidays to be observed during the year and provides eligible employees two breaks each year where employees will not be required to use Personal Time Off; one is at year end and the other is around the July 4th holiday.