Manager, IT Audit

About The Position

Requirements

• Bachelor’s degree in Information Systems, Computer Science, Business, Accounting, or related field.
• Minimum of 6 years of IT or technology audit experience (internal audit or public accounting), with demonstrated success leading complex engagements and supervising teams.
• At least 5 years in internal audit preferred.
• CISA required; CPA or CIA strongly preferred.
• Demonstrated experience with IT general controls, application controls, cybersecurity, and integrated audits; data‑enabled testing, and/or internal quality assessment reviews is preferred.
• Advanced knowledge of IT audit concepts and technology risk management ; strong grasp of internal auditing standards, technology risk assessment techniques, and commonly used frameworks (e.g., COSO, COBIT, NIST, ISO).
• Proven ability to assess complex issues, determine deficiency severity, and craft balanced, actionable recommendations.
• Ability to translate technical IT risks into clear, business-focused recommendations and executive-level reporting.
• Coaching mindset with demonstrated experience training and developing auditors across levels.
• Strong project management skills and the ability to manage multiple deadlines.
• High integrity and discretion in handling confidential information; sound judgement, critical thinking, and analytical skills.
• Proficiency with IT audit tools, data analytics, and system querying techniques.

Nice To Haves

• At least 5 years in internal audit preferred.
• Demonstrated experience with IT general controls, application controls, cybersecurity, and integrated audits; data‑enabled testing, and/or internal quality assessment reviews is preferred.
• CPA or CIA strongly preferred.

Responsibilities

• Plan & Lead Engagements: Own end‑to‑end planning and execution of IT and integrated audit engagements, including IT general controls (ITGCs), application controls, cybersecurity, infrastructure, cloud, data, access governance and system implementations; design risk assessments, define scope, develop audit programs, allocate resources, and ensure work is performed in accordance with professional standards and department methodology.
• Consulting & Special Projects: Provide control guidance for new systems, major enhancements, infrastructure changes and digital initiatives, focusing on control design and risk mitigation early in the lifecycle; participate in special reviews and confidential investigations as assigned.
• Risk & Issue Evaluation: Assess complex technology control issues and emerging IT risk trends, determine risk severity, root cause and enterprise impact, and develop pragmatic, risk‑prioritized recommendations that strengthen security, reliability, and operational effectiveness.
• Reporting & Stakeholder Communication: Draft and review clear, concise audit reports and executive summaries; present results to IT and business leadership; assist the Director with materials for Audit Committee reporting.
• Follow‑Up & Issue Validation: Track management action plans and oversee IT remediation validation to confirm effective and sustainable risk reduction.
• People Leadership: Provide day‑to‑day supervision, coaching, and technical mentorship to auditors performing IT and integrated audits; set expectations, give feedback, and support development plans for senior/staff auditors and interns; foster an inclusive, high‑performance culture.
• Quality & Review: Perform engagement-level quality reviews, including workpaper reviews, issue vetting, severity assessment, and report quality control; conduct internal QA reviews as needed.
• Methodology & Continuous Improvement: Contribute to maintaining and enhancing departmental policies, procedures, templates, and tools; help ensure consistent standards and adoption of data‑driven auditing practices.
• External Auditor Coordination: Coordinate selected testing and control surveys to support external audit reliance where applicable.
• Annual Audit Plan: Assist in risk assessment activities and development of the annual audit plan for Audit Committee approval.
• Professional Development: Maintains professional proficiency in information systems, cybersecurity, auditing standards, and emerging technologies.
• Other duties as assigned.

Benefits

• Competitive annual salary
• Annual Bonus + Annual Merit Increase Eligibility
• Comprehensive health benefits package
• Generous accrued paid time off (PTO) + 8 holidays
• 401(K) plan with company match up to 7%
• Professional development opportunities and tuition reimbursement
• Paid time off to volunteer & company-sponsored volunteer events throughout the year
• Free AAA Premier Membership
• Health & Wellness Program
• Health Concierge Service
• Life Insurance
• Short Term/Long Term Disability
• Medical, Dental, and Vision plan options
• Up to 2 weeks Paid parental leave
• 2+ weeks of PTO within your first year
• Paid company holidays
• Company provided volunteer opportunities + 1 volunteer day per year
• Continual learning reimbursement up to $5,250 per year