Manager, IT Audit Services (Remote)

Employee Value Proposition (EVP): PROG is dedicated to providing people with opportunity; opportunity for inclusive collaboration, opportunity for innovation, and opportunity for development. 

WE ARE: A team of risk and assurance professionals dedicated to enhancing and protecting organizational value through risk-based audit and advisory services. We partner closely with the business to strengthen governance, risk management, and internal controls while fostering a culture of accountability, collaboration, and continuous improvement. We are dedicated to creating a culture of belonging, inclusion, diversity, and equity in our teams and celebrate each individual contributions and uniqueness.  

YOU ARE: In this role, you will be accountable for the execution of the IT audit program and the delivery of high-quality, risk-based assurance and advisory services. You will lead and develop IT audit resources, oversee complex IT, cybersecurity, and the IT portions of integrated engagements, and ensure consistent application of audit methodology and professional standards. You will exercise sound professional judgment, proactively surface and frame technology risks, and build strong partnerships with technology and business leaders while translating technical issues into clear business impact and actionable recommendations.

YOUR DAY-TO-DAY: 

• Manage and execute the risk-based IT audit plan in alignment with the annual audit plan

• Supervise and develop IT audit team members, including performance management, coaching, and formal review of work

• Oversee the planning, execution, and reporting of IT assurance and advisory engagements, including the IT portions of integrated audits

• Perform and review technology risk assessments covering IT general controls, application controls, cybersecurity, artificial intelligence, cloud environments, system development lifecycle, change management, and third-party/vendor risk

• Coordinate and oversee the IT SOX audit program, including tests of design and operating effectiveness of key ITGCs and automated application controls

• Partner with Financial Controls and business stakeholders to ensure effective coverage of technology-dependent business processes and related IT general controls

• Collaborate with audit leadership to ensure IT risks are considered and develop an integrated audit approach, as appropriate

• Review and approve audit programs to ensure alignment with our audit methodology and recognized frameworks as applicable (e.g., COBIT, NIST, ISO)

• Evaluate IT audit results, determine issue severity, assess root causes, and ensure practical, value-added recommendations

• Communicate engagement status, emerging risks, and audit results clearly and timely to management and audit leadership

• Coordinate with external auditors to support reliance on internal audit work, as appropriate

• Ensure audit engagements are completed in accordance with departmental quality standards, professional auditing standards, budgets, and timelines

• Support the annual IT risk assessment

• Prepare and review audit reports and present results to management

• Periodically communicate status and remediation progress of open audit issues to ERM stakeholders

• Contribute to Audit Committee materials and reporting, including open audit issue status

• Promote continuous improvement in audit methodology, tools, and the use of AI and data analytics

YOU’LL BRING: 

• 8+ years of IT audit internal or external auditing) experience (public companies preferred) or equivalent Big 4 public accounting experience 

• Bachelor’s degree in MIS, Computer Science, Finance, or Accounting

• Professional certification (CISA, CIPP, CISSP strongly preferred; CIA or CPA a plus) or active pursuit

• Proficiency in Word, Excel, Access and PowerPoint

• Experience with audit and analytics tools (e.g. AuditBoard, ACL, PowerBI, Access, SQL, cloud platforms)

• Possess unquestionable personal and professional ethics

• Demonstrated experience leading complex IT audit engagements and supervising others

• Experience in supporting SOX testing, audits or compliance projects (regulated industry experience is preferred)

• Experience with IT general controls, application controls, cybersecurity, privacy and technology risk frameworks, including ISO, PCI-DSS, SSAE-16 SOC1 & SOC2, SOX, NIST, COBIT, GAPP & COSO

• Ability to translate technical risks into clear business impact for non-technical individuals

• Ability to understand complex information systems, prioritize tasks and meet deadlines with minimal supervision

• Demonstrated project management experience, including managing multiple, concurrent projects

• Ability to adapt to change quickly; easily shift priorities with a can-do attitude in a fast-paced, ever-changing environment

• Ability to interface effectively and build and maintain strong relationships externally and internally across business functions

• Possess exceptional intellect, with decisive analytical skills and the capacity to think out-of-the-box, bringing novel solutions to overcome barriers to success

• Superior written and oral communication skills; ability to persuasively present and communicate

• Exceptional professionalism; comfortable working with C-level executives

• Current knowledge of The Institute of Internal Auditor’s Global Internal Audit Standards

• Occasional travel as needed to support business objectives

• Experience collaborating and coordinating in a geographically dispersed organization (US)

WE OFFER: 

• Competitive compensation + STI & LTI

• Opportunity to work remotely

• Full Health Benefits: Medical/Dental/Vision/Life Insurance + Paid Parental Leave

• Company Matched 401k

• Paid Time Off + Paid Holidays + Paid Volunteer Time

• Diversity Alliance Resource Groups

• Employee Stock Purchase Program

• Tuition Reimbursement

• Charitable Gift Matching 

• Job Required Equipment & Services Will Be Provided