About the Role
IT Audit Manager
Client - AAA Club Alliance
Location - 3 days on-site in Wilmington, DE
Duration - 6+ month contract to hire
Comp - $90/hr C2C MAX
NOTES:
She brings a breadth of experience, but many of her positions have been contract-based, and I did not hear enough examples demonstrating the long-term leadership, ownership, and program-building experience we are seeking.
Her responses were generally high level, making it difficult to assess how she would approach building and advancing the IT audit program. While I would expect ongoing collaboration and oversight in the role, I was looking for more examples of proactively identifying opportunities, developing solutions, and bringing forward recommendations.
After reviewing the information, I dont think well be moving forward with these particular candidates at this time. For this position, Im specifically seeking candidates who are more at the entry-level management stage and have substantial experience in dedicated internal audit roles or public accounting, ideally in the range of 6 to 10+ years. This focus should help us find someone who fits both our teams current needs and our long-term objectives.
Job Description:
IT Audit Manager to join our Internal Audit team! The IT Audit Manager leads and supervises multiple, concurrent technology-focused engagements, including IT general controls, application controls, cybersecurity, data and integrated audits - to ensure technology risks are effectively identified, managed, and aligned with business objectives. The role designs IT risk assessments and audit programs, oversees engagement execution and quality reviews, develops audit staff, and partners with IT and business leadership to strengthen technology governance, security and control environments across all entities of the ACA organization. The Manager also supports the Audit, Risk and Compliance Committee reporting and assists the Director with the development of the annual risk assessment, audit plan and department methodology
Position Description:
Plan & Lead Engagements: Own endtoend planning and execution of IT and integrated audit engagements, including IT general controls (ITGCs), application controls, cybersecurity, infrastructure, cloud, data, access governance and system implementations; design risk assessments, define scope, develop audit programs, allocate resources, and ensure work is performed in accordance with professional standards and department methodology.
Consulting & Special Projects: Provide control guidance for new systems, major enhancements, infrastructure changes and digital initiatives, focusing on control design and risk mitigation early in the lifecycle; participate in special reviews and confidential investigations as assigned.
Risk & Issue Evaluation: Assess complex technology control issues and emerging IT risk trends, determine risk severity, root cause and enterprise impact, and develop pragmatic, riskprioritized recommendations that strengthen security, reliability, and operational effectiveness
Reporting & Stakeholder Communication: Draft and review clear, concise audit reports and executive summaries; present results to IT and business leadership; assist the Director with materials for Audit Committee reporting.
FollowUp & Issue Validation: Track management action plans and oversee IT remediation validation to confirm effective and sustainable risk reduction.
People Leadership: Provide daytoday supervision, coaching, and technical mentorship to auditors performing IT and integrated audits; set expectations, give feedback, and support development plans for senior/staff auditors and interns; foster an inclusive, highperformance culture.
Quality & Review: Perform engagement-level quality reviews, including workpaper reviews, issue vetting, severity assessment, and report quality control; conduct internal QA reviews as needed.
Methodology & Continuous Improvement: Contribute to maintaining and enhancing departmental policies, procedures, templates, and tools; help ensure consistent standards and adoption of datadriven auditing practices.
External Auditor Coordination: Coordinate selected testing and control surveys to support external audit reliance where applicable.
Annual Audit Plan: Assist in risk assessment activities and development of the annual audit plan for Audit Committee approval.
Professional Development: Maintains professional proficiency in information systems, cybersecurity, auditing standards, and emerging technologies.
Other duties as assigned
Required Skills:
5+ years in internal audit preferred.
CISA required
Brings broad experience across multiple industries, with a strong technical mindset focused on risk and controls
Bachelors degree in Information Systems, Computer Science, Business, Accounting, or related field.
Capable of operating at both levels: strong technical knowledge while effectively engaging with non-technical stakeholders
6+ years of IT or technology audit experience (internal audit or public accounting), with demonstrated success leading complex engagements and supervising teams.
Demonstrated experience with IT general controls, application controls, cybersecurity, and integrated audits; dataenabled testing
Strong project management skills and the ability to manage multiple deadlines.
Advanced knowledge of IT audit concepts and technology risk management ; strong grasp of internal auditing standards, technology risk assessment techniques, and commonly used frameworks (e.g., COSO, COBIT, NIST, ISO).
Proven ability to assess complex issues, determine deficiency severity, and craft balanced, actionable recommendations.
Ability to translate technical IT risks into clear, business-focused recommendations and executive-level reporting.
Coaching mindset with demonstrated experience training and developing auditors across levels.
High integrity and discretion in handling confidential information; sound judgement, critical thinking, and analytical skills.
Proficiency with IT audit tools, data analytics, and system querying techniques.
BONUS
Internal quality assessment reviews is preferred
CPA or CIA strongly preferred
Key Responsibilities & Skills
- IT Risk Assessment & Audit Program Design
- IT General Controls (ITGC) Auditing
- Application Controls Auditing
- Cybersecurity Audit & Controls
- DataEnabled Testing & Analytics
- Integrated IT & Business Audits
- Project Management & Deadline Management
- Stakeholder Communication & Executive Reporting
- People Leadership & Auditor Development
- Quality Assurance & Workpaper Review
- Control Design & Risk Mitigation
- Access Governance & Identity Management
- Cloud & Infrastructure Auditing
- Audit Committee Reporting
- Technology Governance & Compliance
Technical Skills
- CISA (Certification)
- ACL / IDEA
- SQL / Excel
- Data Analytics & Visualization (Tableau / Power BI)
- IT Audit Software (TeamMate / RSA Archer)
- Cloud Platforms (AWS / Azure)
- Governance Framework Tools (COSO / COBIT)
Education
Bachelor's Degree in Information Systems, Computer Science, Business, Accounting, Finance, Auditing. Preferred: CPA, CIA, Master's in Information Systems, Master's in Cybersecurity, MBA.
Industry Experience
- Financial Services
- Healthcare
- Technology
- Manufacturing
- Retail