IT Audit Manager (Application Controls, Data Governance, and IT Operations)
We are seeking an experienced IT Audit Manager to join our internal audit team. In this role, you will lead multiple technology and integrated audits concurrently, including large-scale and complex projects across various locations and divisions. Your primary responsibilities will involve evaluating risks and controls related to systems and applications during audit reviews, supervising and reviewing the work of audit team members, and proactively managing audit budgets and timelines. You will communicate findings and issues to senior audit leaders and management, while also developing solutions for business improvements.
Key Responsibilities:
Management and Leadership:
- Oversee the audit project team, collaborating on audit reports.
- Work with mid- to senior-level management to identify and address audit and risk issues.
- Supervise project-specific teams and provide regular progress updates to audit and client management.
- Recommend viable solutions for identified issues and refine proposals from the audit team.
- Foster strong working relationships with management at all levels within client organizations.
- Provide timely and constructive feedback for team evaluations.
Analysis and Reporting:
- Participate in complex audits, contributing industry expertise to the team and management.
- Assess internal control systems and prepare risk assessments, audit programs, and planning memos as needed.
- Execute and document control evaluation procedures.
- Organize and analyze audit data, summarizing findings for management review.
- Draft detailed audit reports outlining identified issues, implications for the business, and recommendations for resolution.
Communication:
- Constructively escalate issues identified during audits or special projects.
- Engage in discussions with senior management regarding audit results and recommendations.
- Stay informed about changes in the business and growth plans, offering strategic advice on risk-related matters.
Research:
- Utilize current and emerging audit tools and techniques for data analysis.
- Contribute to audit scope discussions.
- Conduct technical research using various internal and external sources.
Administrative Responsibilities:
- Assist external auditors and regulators in achieving their objectives.
- Engage in audit discussions and reviews.
Qualifications:
- Bachelor’s or Master’s degree in information systems or a related field.
- 8-10+ years of audit or relevant business experience.
- Experience in project management.
- Strong communication and interpersonal skills, with the ability to convey complex issues to senior management.
- Professional audit certifications (e.g., CISA, CISM, CIA) are preferred.
- Ability to work independently and collaboratively, sharing information and supporting team members.
- Strong analytical skills and experience mentoring and guiding junior auditors.
Preferred Areas of Expertise:
- Proficiency in computer systems and banking applications, as well as regulatory frameworks.
- Knowledge of Application Controls, Information Access Management, Cloud Security, and Vendor Security.
- Familiarity with security policies, frameworks (e.g., NIST, FFIEC), operating systems (Windows, Linux/UNIX, MVS), and database platforms (SQL, Oracle, DB2).
- Understanding of the Systems Development Life Cycle, Data Governance, and Business Continuity Planning.
- Familiarity with ITIL, ServiceNow, Splunk, or similar systems is a plus.
This position is based in New York City and operates on a hybrid model, requiring three days in the office each week.
