IT Audit Manager

Job Summary

The Manager of IT Audit is responsible for supporting the global Internal Audit function focused on Information Technology and Information Security. This role ensures the effectiveness of IT internal controls, risk management, and governance processes across the organization’s IT landscape. The position plays a critical role in safeguarding digital assets, ensuring regulatory compliance, supporting NI52-109/SOX, and driving continuous improvement in audit practices. Reporting to the Director of IT Audit, this role will support IT audit strategy, execution, and partner with critical 3rd party partners to ensure project success.

Job Responsibilities

• Execute a global, risk-based IT audit strategy aligned with corporate objectives and regulatory requirements.
• Perform day-to-day audit execution related to IT infrastructure, cybersecurity, cloud services, data governance, and application controls among other high-risk topics. This will include audit planning, fieldwork, reporting, and follow-up.
• Participate and lead NI52-109/SOX ITGC (IT General Controls) planning, testing, and remediation efforts both internally and with vendor partners.
• Provide input to all audit policies, procedures, and standards in accordance with the Institute of Internal Auditors (IIA) and ISACA frameworks.
• Partner with business cross-functional teams to assess and improve IT risk management and control frameworks.
• Be a central point of contact for external auditors, co-sourcing partners, and internal stakeholders to ensure audit quality and alignment.
• On a project basis, share audit findings, risk assessments, and recommendations to key business stakeholders to ensure alignment and buy-in.
• Foster a culture of excellence and continuous learning amongst the Internal Audit team.
• Monitor emerging technologies, including AI, and regulatory changes to adapt and enhance audit practices accordingly.
• Support special projects and strategic initiatives related to IT governance and digital transformation.
• Provide input to IT Enterprise Risk Management initiatives.
• Support Data Analytics and utilize those skills when performing audits or supporting the Internal Audit department.
• Works in a safe manner collaborating as a team member to achieve all outcomes.
• Demonstrate Behaviours that exhibit our organizational Values: Collaboration, Courage, Perseverance, and Passion.
• Ensure personal adherence with all compliance programs including the Global Business Ethics and Compliance Program, Global Quality policies and procedures, Safety and Environment policies, and HR policies.
• All other relevant duties as assigned.

Job Requirements

Education:

• Bachelor’s degree in information systems, Computer Science, Data Analytics, Accounting, or a related field.
• Certified Information Systems Auditor (CISA) certification is required.
• Other certifications such as: Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Internal Auditor (CIA), Certified in the Governance of Enterprise IT (CGEIT), or Certified Fraud Examiner (CFE) preferred.

Knowledge, Skills and Abilities:

• Strong understanding of IT controls, security frameworks, (e.g., NIST, ISO) and regulatory requirements (e.g., N152-109/SOX, GDPR).
• Proficiency with audit methodology and tools including AuditBoard (or similar workpaper management systems).
• Proficiency with SAP or similar ERP systems.
• Ability to build relationships with, partner with, and influence senior leadership.
• Excellent analytical, problem-solving and communication skills.
• Advanced Excel data analytical skills required; Strong knowledge and use of specific tools (e.g., Alteryx, PowerBI, etc.) is preferred.
• Strong report writing skills including the ability to present complex topics clearly.
• Ability to work independently and as part of a team.

Experience:

• 5 years in IT audit, risk management or related field.
• Proven experience in leading and managing audit teams and working with third-party audit partners.