Manager IT Audit
SUMMARY OF POSITION
Assist the Chief Audit Executive in the annual risk assessment and corresponding planning process, supervision of the audit staff (including co–sourced resources), and preparation and issuance of audit reports to senior management and the Board of Directors. Develop, plan, supervise and execute IT audit engagements of varying sizes and complexities. Directly manage relationships with Information Technology management and co–sourced provider, including quality control over co–sourced provider. Communicate regularly with senior management regarding risk assessments and audit results.
•Develop, with the Chief Audit Executive, a strategic framework for the audit coverage of the OF's IT risks, including use of IA in–house and externally co–sourced resources.
•Provide, with the Chief Audit Executive, management direction and oversight for the independent assessments of risk and internal controls of the OF's technology environment and develop the annual audit plan
•Develop and direct the IT audit process and provide technical expertise to auditors, and be able to manage auditee relationship activities with objectivity and independence.
•Conduct, supervise and oversee specific IT audits, including planning, fieldwork execution, quality control and report writing. Provide audit consultation to IT Department regarding information technology risks and controls, and recommend changes to mitigate deficiencies.
•Develop, plan, supervise, coordinate, conduct and oversee the IT audit plan, including co–sourcing resources, and assess whether the work is done in compliance with Internal Audit (IA), regulatory and industry (including IIA & ISACA) standards and in conformity with department standards.
•Interact with external auditors to coordinate and facilitate effective and efficient execution of annual external audits of the Operating Fund and Combined Financial Report.
•Develop, plan, supervise and coordinate the annual SOC 1, Type 2 Review of the debt issuance and servicing processes.
•Maintain an ongoing and in–depth understanding of the business processes and the underlying technologies of the OF's security and network infrastructure.
•Provide technical training and support to the Internal Audit staff, and be the focal point for the technical aspects of integrated audits.
PRINCIPAL JOB REQUIREMENTS
•Bachelor's Degree in Information Technology, Accounting Information Systems, Computer Science, Finance, Accounting,or a related field is required. Masters or advanced degree preferred. CISA is required. Other technical certification/designations such as CISSP or CIA are preferred.
•Minimum of seven years' information systems audit experience in an accounting firm, internal audit or consulting, developing and implementing information systems audit plans and programs.
•Previous experience in a highly automated business process environment is preferred. Understanding of IT Control framework (e.g., COBIT) required
•Ability to communicate technical information pertaining to the adequacy, effectiveness, and efficiency of internal controls. Must be able to create work papers that support the audit work performed in accordance with the applicable audit standards and regulations. Expert knowledge and ability to independently evaluate audit results of the technical areas where established standards and precedents may not have been developed. Assess the appropriateness of audit scope, objectives and tests, and completeness of the audit outcome.
•Experienced in using a risk–based audit approach in evaluations of and recommendations for management processes.
•Knowledge and previous experience with information security, information governance, business continuity and resiliency programs and risk and control frameworks is preferred.
•Experience implementing data analytics in the audit process is preferred.
•Strong written and verbal communications skills. Experienced in writing clear, well–organized, and effective audit reports and making management presentations, and maintaining strong relationships with Bank staff and management.
•Strong Team Leadership and consensus building skills. Must be able to interact effectively with all functional levels internally and externally.
EQUAL EMPLOYMENT OPPORTUNITY
The OF is an equal employment opportunity employer. It is the OF's policy to provide equal employment opportunities to all qualified applicants without regard to race, color, religion, sex, national origin, age, disability, veteran status, sexual orientation, gender identity, status as a parent, or genetic information, or any other characteristic protected by applicable law.