Director, IT Audit

2 minute read

Job Description

In this role, you will be responsible for our IT audit strategy and execution. Leveraging your extensive experience with complex information technology environments, multiple ERPs, process improvement and risk management, you will bring a pragmatic approach to developing audit solutions. You will provide strategic direction specific to global security practices for enterprise system processing and implementation and data management/storage, aligned with corporate risk management directives and Brightstar’s IT Controls framework.

The Corporate Audit Services group (“CAS”) assists Brightstar’s Board of Directors, Audit Committee and senior management by providing a holistic view of the company’s risk profile, identifying/mitigating emerging risks, and helping the business navigate through risk. CAS is responsible for assessing the adequacy and effectiveness of the internal controls over (1) financial reporting, (2) effectiveness and efficiency of operations, and (3) compliance with laws and regulations, as well as the adequacy of the company's risk management and governance processes. CAS also provides advisory services associated with emerging risks and change activities. The function adds value by providing objective, timely and relevant analyses, insights and recommendations with an integrated, risk based auditing approach.

As a key member of the CAS leadership team, you also will be expected to contribute to the development of the global functional strategy and to the development of team members.

RESPONSIBILITIES

  • Form a center of excellence for information security management, offering independent assurance and collaborative advisory services on information security risk and control matters.
  • Conduct an annual IT risk assessment and use findings to shape annual audit plan, strategies and budget. Coordinate with CAS colleagues to integrate IT audits with other audit activities.
  • Oversee multiple audit teams executing SOX audits, operational process reviews and review of system implementations, applications and other IT-related risk areas.
  • Optimize resource allocation and provide development opportunities for team members (technical development and capability building around risk management, problem solving, communication, and business understanding).
  • Ensure timely remediation of all IT related control deficiencies.
  • Assist VP of Corporate Audit Services management with reporting to the Audit Committee and other key stakeholders.
  • Make recommendations to IT Senior Management. Identify and communicate enterprise-wide themes.
  • Perform Quality Assessments reviews, monitor monthly cost variance for ongoing projects and audit ageing reporting.
  • Drive continuous improvement and innovation in CAS processes and client service while maintaining compliance with auditing standards.
  • Partner with related governance functions including IT Development, IT Technical Operations, Physical Security/Facilities to develop standards and best practices throughout the organization on information security matters.
  • Champion IT related internal control and corporate governance concepts throughout the business, promoting the advantages and benefits of managing information security risks efficiently and effectively.
  • Collaborate with external auditors and colleagues to address requests in a timely way.
  • At all times, promote the highest level of ethics, independence and integrity.

Original job postingSubmit Resume

Let's block ads! (Why?)