Technology Audit Manager
(6) Applicants
$90,000.00$150,000.00
United States new york NYHybrid4 weeks ago
15000 employeesFinance
Direct hire
About the job
This position is hybrid - Tuesday - Thursday in the New York Office and Monday and Friday work from home.
This position is a managerial role that will manage the execution of audits and advisory projects and help steer the focus areas for the IT Audit team. The position will be based at the Company’s home office in New York City and expected to follow a hybrid schedule of onsite and remote. The role focuses on technology audits and advisory services, as well as integrated audits within the insurance, agency, investments, and corporate functions universe.
Specific responsibilities include:
- Manage day to day execution of audit and advisory engagements performed by the IT Audit team. This includes leading engagement with clients at all phases of the project, providing guidance to the team when needed and engaging with Technology and Business leaders on audit outcomes.
- Collaborate with the first and second line lines of defense to plan work efforts, reduce audit fatigue and drive productive outcomes for CAD projects.
- Coach junior team members to develop their knowledge of audit methodology and technology related topics.
- Support ongoing departmental risk assessments, audit planning and complete planning deliverables in accordance with department standards. Risk-assess assigned technology plan areas using gathered inputs and professional judgement.
- Strengthen our relationships with key stakeholders in Technology and our businesses. Help stakeholders better understand and manage technology risks and controls to protect and drive enterprise value.
- Provide a strategic perspective by connecting information from across the organization and external thought leadership to drive risk assessment and audit outcomes and identify new opportunities for CAD to provide value to our stakeholders.
- Work with Technology and Business stakeholders to assess, identify risk, advise, and consult on a wide variety of technology related topics, including major technology projects, cybersecurity, cloud, data, privacy, enterprise applications, disaster recovery, analytics and emerging technologies
- Assist departmental efforts around continuous audit improvement including data analytics, automation, continuous monitoring and other emerging tools and methods.
- Develop and maintaining skills in relevant existing and emerging areas of technology. Keep up to date on regulatory landscape impacting technology areas.
- Travel 10% - 15% domestic and international, in addition to occasional travel to offices in the tri-state area.
Qualifications:
- Bachelor’s degree, preferably in relevant discipline (e.g., Accounting, Finance, Information Technology, Cybersecurity, or Business-Related Field).
- 6+ years working in internal audit, consulting, assurance services, or related field, either in professional services or industry.
- Advanced verbal and written communication skills, including communicating audit outcomes, findings and recommendations.
- Experience in establishing and cultivating critical business relationships with senior leaders and executives. Ability to translate technology topics and audit issues into “business speak” to be understood by business leaders.
- Strong managerial experience of teams including providing feedback, mentoring / coaching, oversight and review of work, coordination across teams, and motivational skills.
- Experience leading teams of at least 3-4 individuals in executing audit methodologies and developing key internal audit deliverables focusing on technology topics, including process flows, work programs, audit reports, and control summaries.
- Understanding of commonly used internal control frameworks, including COBIT, ISO 27001, NIST Cybersecurity Framework, ITIL, etc. and demonstrated ability to apply them to risk assessments, audits and advisory projects.
- Practical audit experience in Cloud Technologies (e.g., AWS, AZURE, GCP), associated infrastructure, and data warehousing and lifecycle management.
- Experience auditing Business Application Controls (e.g., ITAC/BAC, GTAG). Insurance and Investments processes and application controls experience is a plus.
- An in-depth understanding of IT Audit methodologies, concepts, tools and objectives. Familiarity with leading practices related to IT Audit universe and risk assessment.
- Knowledge of relevant regulatory landscape and methodologies for achieving compliance, in particular the technology implications and requirements.
- Proficiency in Microsoft Office suite applications with specific emphasis on Word, Excel and PowerPoint.
- Professional Certification such as CPA, CIA, CISA, CISSP, CRISC, GSEC, PCI-DSS, or similar strongly preferred.