IT Audit Manager

B

Buckingham Search

IT Audit Manager

Chicago, IL
Full Time
Paid
  • Responsibilities

    The IT Audit Manager manages audit teams in the performance of IT operational and compliance audits (with additional exposure to certain non-IT audits) according to acceptable audit standards and within prescribed timelines and budgets. The IT Audit Manager also provides supervision, coaching and development to senior and staff level auditors. The IT Audit Manager will report to the Internal Audit Senior Director.

    Responsibilities:

    • Perform risk assessments across our organization’s information technology landscape and global technology project portfolio to determine and maintain multi-year audit priorities with a focus on emerging risks (e.g., cybersecurity, cloud)
    • Use Agile Internal Audit methodology to manage lead auditors in the planning and execution of the IT audit strategy for the global business, including assurance and advisory engagements
    • Review workpapers, including planning documents and reports, to ensure clear identification of risks, and corresponding issues / gap assessments
    • Communicate findings timely, and collaborate with process owners to develop creative, yet practical, action plans
    • Manage the follow-up and reporting of findings until they are remediated
    • Provide supervision, coaching and development to senior and staff auditors, including determining baseline IT skills required of the broader Internal Audit team
    • Communicate and advise senior executive management of key/emerging risks periodically, as identified through risk assessment procedures
    • Participate and lead department continuous improvement projects
    • Maintain professional certifications

    Qualifications:

    • Bachelor or advanced degree in computer science, information systems, accounting, or related field
    • 5 or more years of experience in some combination of public accounting, internal audit, or a risk advisory role, with a focus on IT
    • Proficient understanding of applying auditing principles and practices to common risk frameworks (e.g., COBIT, NIST) and ability to advise on leading industry/business practices
    • Excellent listening, verbal, written, and presentation skills, with the ability to communicate effectively within several levels of the company, including executive leadership
    • CISA or comparable professional certification (e.g., CISM, CISSP)
    • Experience with cyber security or information security audits