Under the direction of the Vice President of Internal Audit Services (SDIA), the Audit Manager, Information Technology (IT) adds value to and improves operations by performing basic assurance, consulting, and investigative engagements of the American Cancer Society. The Audit Manager, IT is also responsible to aid in a broad based self-assessment program in each organization and location, promulgating “Best Practices” and producing continued evaluations of the “risk profile” at the Society and ultimately reporting on situations that exist outside the risk tolerances set by ACS Board and Management. The Audit Manager, IT is responsible for planning, scheduling, supervising and conducting various and diverse technical audits, reviews and special projects as assigned. The Audit Manager, IT is responsible for providing internal control consultation and ensuring that internal control policies, standards, systems, processes and procedures are put into place and followed throughout the ACS system are followed.
Areas of Responsibility:
- Plan, schedule, and supervise assigned audit projects in accordance with project budgets, and supervise/perform special projects requested by management;
- Determine the scope, objectives and procedures to be performed for each assignment;
- Manage the preparation/updating of audit programs, approaches, tools and techniques for assigned audit projects;
- Prepares or assists in preparing the IT risk management and internal control and audit program for the ACS;
- Surveys IT operations, functions or activities and gathers information on key business risks. Evaluates the adequacy of the controls designed to manage those risks. Discusses strengths and opportunities for improvement with management, and develops recommendations for improvement;
- Using standard audit techniques, obtains, analyzes and appraises data, transactions and records as a basis for providing an objective opinion on the performance of the business activity and the effectiveness of key risk management activities;
- Performs risk assessment and profiling the IT risk management throughout the organization from a holistic view;
- Completes audits of the ACS under the direction of Internal Audit Services Management;
- Uses automated software to document audit work in an organized, accurate, and concise manner that clearly supports the conclusions reached regarding audit objectives;
- Prepares or assists in preparing draft issues or written reports and makes or assists with making presentations to management;
- Builds professional relationships by demonstrating appropriate self-confidence, a facilitative communication style and constructive responses to client needs;
- Maintains positive interpersonal relationships with team members and others by demonstrating productivity, initiative and professionalism;
- Reviews and coordinates IT and CSA risk management activities with the external auditors, regulatory examiners, and others as directed, and
- Reports the results of self-assessments performed and monitored as well as, any vulnerability to fraud and other reputation issues
OTHER DUTIES, RESPONSIBILITIES, AUTHORITY, DECRETION, RELATIONSHIPS AND STANDARDS:
- Identifies those activities subject to IT risk management coverage, evaluates their significance and assesses the degree of risk inherent in the activity.
- Develops an annual plan and schedules and performs projects and assignments to comply with management's needs, within the scope of the department's overall risk management program.
- Identifies those activities subject to CSA risk management coverage, evaluates their significance and assesses the degree of risk inherent in the activity.
- Develops an annual audit plan and schedules and performs projects and assignments to comply with management’s needs, within the scope of the department’s overall risk management program.
- Identifies factors causing deficient conditions and recommends courses of action to improve the conditions, including special surveys, reviews and audits.
- Provides management with clear and concise reports on IT risk management coverage and the results of the IT risk management activity, and interprets those results to improve the IT risk management program and coverage.
- Provides management with clear and concise reports on results of self-assessments performed.
- Develops, reviews, edits, and presents reports and discusses the reports with appropriate management, the Audit Committee of the Board of Directors as assigned.
- Presents oral briefings to the CEO, the Audit Committee of the Board of Directors and the Chief Financial Officer as assigned.
- Provides consultative services in IT and CSA risk management, as requested by the SDIA, in the development of new policies, standards, systems, processes and procedures.
- Participates in related system implementation to ensure internal controls and access to system is appropriate through task force participation.
- Assists all Internal Audit Services functions in IT related aspects of their job assignments.
Educational Background:
Bachelor’s Degree in Math, Business, or Information Technology. Professional certification in IT auditing (CISA) required, CISSP strongly encouraged
Skills/Experience:
Demonstrates Finance Competencies:
- Customer focus - Builds strong customer relationships and delivering customer-centric solutions.
- Decision quality - Makes good and timely decisions that keep the organization moving forward.
- Action oriented - Takes on new opportunities and tough challenges with a sense of urgency, high energy, and enthusiasm.
- Optimizes work processes - Knows the most effective and efficient processes to get things done, with a focus on continuous improvement.
- Ensures accountability - Holds self and others accountable to meet commitments
- Collaborates - Builds partnerships and working collaboratively with others to meet shared objectives.
- Communicates effectively - Develops and delivers multi-mode communications that convey a clear understanding of the unique needs of different audiences.
- Instills trust - Gains the confidence and trust of others through honesty, integrity, and authenticity.
Other Skills:
- Five to nine years of experience in Internal and /or External IT auditing required.
- Demonstrated command of computer technology and computer based accounting and auditing support programs required.
- Proficient computer skills required (word / excel / access / etc.)
- Travel (25 %) required.
- Strong interpersonal relationship skills required.
- Strong leadership skills, providing vision, establishing challenging but attainable goals and standards, and modeling high performance in personal behavior.
- Well-developed oral and written communication facilities and presentation skills.
- Courage and conviction to state critical issues encourage constructive debate and cause responsible managers to make necessary decisions in the Society’s best interest.
- Regulatory experience desirable.
SPECIALIZED TRAINING OR KNOWLEDGE:EXAMPLE:
- Minimum 3 year supervisory experience.
- Experience with COBIT and ITIL as well as PCI requirements.
Compensation/Benefits:
We are committed to providing staff with fulfilling opportunities to learn, grow and make an impact in their local communities. We offer staff a generous paid time off policy; medical, dental and retirement benefits, and professional development programs to enhance staff skills.
Job Function:
Organization Info
Listing Stats
Post Date:
Mar 20 2018
Active Until:
Apr 20 2018
Hiring Organization:
American Cancer Society
industry:
Nonprofit