Manager Internal Audit / Security Audit / Risk Assessment

NO SPONSORSHIP

Manager Internal Audit IT & Security / Risk Assessments

Salary: $136k to $170k plus 15% bonus

Location: Chicago, IL

Misc. Info.: Hybrid 3 days in office and 2 days remote

Looking for a candidate out of a financial firm or big 4 or well known accounting firm. You will manage a team of auditors in IT and Security audit, cyber security reviews and internal audit standards.

Delivery

• Aid in the development of the risk assessment and comprehensive audit plan on an annual basis.
• Lead multiple audits and validations simultaneously.
• Defining and leading the execution of audit projects in accordance with the annual audit plan.
• Owning the audit quality, accuracy of results, and delivery in a timely manner.
• Leading audits related to organization changes including business requirements definitions, technology implementations (e.g., changes to the supported business processes), engagement and alignment of change initiatives to business objectives.

Quality

• Ability to clearly articulate professional principles and standards (e.g., AICPA, IIA IPPF, COBIT, NIST CSF) and the relevancy to risk management and impact on policies and procedures. In addition, leveraging these principles and standards to test and evaluate corporate risk management processes and controls.
• Maintaining an understanding of policies, procedures, standards, and supporting technologies, and educating staff accordingly, to effectively identify potential risks and alternatives to mitigate risk exposure leveraging leading practices.
• Keeping current on leading practices and emerging risks within the financial services industry and making recommendations for improvements as necessary.
• Serving as a liaison with external parties and regulators to facilitate timely and efficient external reviews, knowledge transfer, and controls and process education.
• Supporting other department-wide activities such as but not limited to peer reviews of audit deliverables, policy and procedure development and refinement, etc.

Qualifications:

Experience

• Experience working in a complex, fast paced environment.
• Experience using the principles, practices, and techniques involved in conducting audits in accordance with the requirements set forth in the International Standards for the Professional Practice of Internal Auditing published by the Institute of Internal Auditors (IIA).
• Consulting and/or accounting firm experience.
• Experience in Financial Services/Security Industry and working with regulations such as Regulation Systems Compliance and Integrity (Reg SCI).

Technical Skills:

• Microsoft Office applications
• Proficiency using Archer or other audit or Governance Risk and Compliance (GRC) software
• Familiarity with security tools such as: CyberArk, Splunk, SailPoint
• Familiarity with change management tools such as: ServiceNow, Jira, Confluence, GitHub
• Bachelor s degree
• 5+ years of experience (audit-related) in conducting risk-based Information Technology and Security audits and projects, cyber security reviews, and internal audits.