IT Audit Manager

IT Audit Manager with a construction company.
 

Summary

The IT Audit Manager will lead and deliver the IT audit plan by scoping, executing, and reporting on risk based IT and cyber audits, ensuring high quality outcomes and timely delivery.

Responsibilities

• Lead and deliver the IT audit plan by scoping, executing, and reporting on risk based IT and cyber audits, ensuring high quality outcomes and timely delivery across global businesses.
• Direct and develop audit teams, delegating effectively, removing obstacles, coaching for performance, and creating an engaged, high performing culture built on trust, collaboration, and continuous learning.
• Strengthen the technology control environment by assessing and improving complex IT, cyber, ERP, OT, and digital processes, providing pragmatic, commercially focused recommendations that support business performance.
• Drive functional projects and initiatives, contributing to technology enabled audit transformation, improving governance, control standards, and operational efficiency (including SOX, frameworks, and methodology).
• Build and manage strong stakeholder relationships across IT, Security, Finance and Operations, acting as a trusted advisor while maintaining independence and representing IA with credibility and professionalism.
• Promote innovation and sound decision making by anticipating emerging technology risks, leveraging data and audit technologies, and proposing new solutions that enhance IA effectiveness and business resilience.
• Support global mobility and on site engagement by travelling to locations when required to lead fieldwork, participate in stakeholder discussions, and coach teams across diverse environments and cultures.

Requirements

• Audit Methodology & Assurance Delivery: Proficient in risk assessment, scoping, process walkthroughs, control design evaluation, testing, data driven auditing, and delivering clear, commercially focused recommendations.
• Stakeholder Influence & Communication: Excellent ability to translate complex IT and cyber risks into clear, actionable messages for senior leaders, while confidently challenging and influencing decision makers.
• Leadership & Functional Impact: Strong capability to lead, coach, and develop high performing teams; drive cross functional collaboration; and contribute to advancing IA methodologies, governance standards, and technology risk maturity across
• Technology Enabled Auditing: Ability to leverage audit management tools, automation, analytics, and digital solutions to optimize audit efficiency and insights across global and diverse environments.
• Deep IT & Cyber Risk Expertise: Strong command of ITGCs, IT governance, cyber security principles, SOX technology controls, and industry frameworks (e.g., ISO 27001, NIST, COBIT) to evaluate and enhance control environments.
• ERP, Operational Technology & Core System Knowledge: Advanced understanding of SAP/SAP HANA, JDE, dispatch systems (e.g., JWS/Command Alkon), and industrial control/manufacturing systems, with the ability to link IT controls directly to business processes.
• Security Architecture & Technical Controls: Skilled in network/perimeter security, access management, secure development, cloud and virtualization environments, vulnerability management, penetration testing, and incident response practices.
• Bachelor’s degree in Information Systems, Computer Science, Engineering, Cybersecurity, Finance/Business with IT focus, or related field.
• 7+ years progressive IT audit, technology risk, cybersecurity, or controls experience in professional services, industry, or public sector — including time at manager level or equivalent.
• A relevant professional certification such as CISA (preferred), CISSP, CISM, CRISC, ISO related certifications, or equivalent.
• Experience in SOX, corporate governance, internal controls, compliance, and substantive testing.
• You are willing to travel to companies, with a travel component of around 30%. A full, clean driving license is essential to support travel requirements.
• Exposure to data analytics and the use of relevant tools including Alteryx, Power BI and Tableau.
• Practical experience in SAP or other ERP environments; experience with SCADA/OT systems and cloud platforms.