IT Audit Manager

We are in search of an IT Audit Manager to join our team, based in Dallas, Texas. This role is crucial in our Service industry, where you will be at the forefront of leading the first line of defense and designing process flows. This position offers a contract to permanent employment opportunity.

Responsibilities:

• Identify and assess SOX and operational IT risks within complex IT and Business processes and develop strategies to mitigate those risks.
• Partner with IT and Business leaders to design and implement IT General Controls (ITGCs), IT automated and business controls to address critical risks.
• Develop and implement comprehensive technology risk and control governance frameworks and standards, ensuring alignment with industry best practices and regulatory requirements.
• Facilitate remediation of control deficiencies and gaps through providing leadership and guidance over the remediation lifecycle.
• Evaluate SOC1/SOC 2 reports for Third-party Applications and aid in the design and implementation of Complementary User Entity Controls (CUEC).
• Monitor changes in regulatory requirements and emerging technologies and provide guidance on their impact to the IT and Business control environment.
• Train IT and Business teams on the enterprise risk framework and standards.
• Prepare risk reporting for business and IT leadership review.
• Work with Enterprise IT and manage different pillars such as O2C, Source to Pay, and Record 2 Report / Permanent to Retire
• Bachelor's degree in Information Systems, Information Technology, Accounting, Auditing or a related field
• Advanced degree or relevant certifications (e.g., CISA, CISSP) are a plus.
• 4-7 years experience in IT governance, risk and compliance with a specific focus on SOX and Operational risk management.
• Proficiency in assessing IT and Business SOX and operational risks and implementing effective control solutions
• Deep knowledge of IT General Controls (ITGCs), IT automated and Business controls, and their application in financial reporting and operational processes. Understanding of how applications, Operating systems, Databases work to implement IT General controls in Logical Access, Change Management and Computer Operations
• Excellent communication and collaboration skills, with the ability to work effectively with cross-functional teams and influence stakeholders at various levels of the organization
• Strong analytical and problem-solving abilities, with a keen attention to detail
• Ability to adapt to a dynamic and fast-paced environment and handle multiple priorities with a sense of urgency
• Communicates technical and functional risk management solutions effectively and efficiently
• Knowledge of industry frameworks and standards, such as COBIT and ISO 27001, is highly desirable
• Ongoing risk monitoring and reporting and respective technology enablement (e.g., GRC tools such as Archer and ServiceNow)
• Prior experience in ERP, Cloud, or DevOps tools