Job DescriptionGlobal Head of Technology & Cybersecurity Internal AuditRemote- Mid-Atlantic RegionMonday to Friday 8:00 am to 5:00 pmThe Global Head of Technology & Cybersecurity Internal Audit is a leadership role within the Internal Audit function, responsible for providing independent assurance and strategic insight over technology, cybersecurity, and emerging risk domains across a global, highly regulated organization. This role reports to the Global Head of Internal Audit and partners closely with Enterprise Technology, Risk Management, Compliance, and senior business leaders to evaluate the design and effectiveness of governance, risk management, and control frameworks.
The role has global coverage and requires deep experience operating in complex international environments, with a particular focus on cybersecurity, cloud, data, and the responsible use of artificial intelligence.
What you will be doing:Audit Leadership & Assurance- Design and maintain a risk-based technology and cyber internal audit plan aligned to enterprise risks, regulatory expectations, and the evolving threat landscape.
- Lead and oversee end-to-end technology, cybersecurity, IT, and data-related internal audits across global operations, including audit planning, risk assessment, execution, reporting, and issue validation.
- Oversee the execution of IT and cybersecurity audits performed by third-party providers, ensuring work quality, adherence to Internal Audit standards, alignment with CSC's risk framework, and appropriate coverage of key risks and controls.
- Provide independent assurance over information security, cyber resilience, cloud environments, identity and access management, data protection, third-party risk, and technology resilience.
- Evaluate controls supporting compliance with relevant regulations, standards, and frameworks (e.g., GDPR, ISO 27001, DORA, NIST, and other regional supervisory expectations).
Cybersecurity, Technology & AI Focus- Assess the maturity and effectiveness of cybersecurity governance, incident response, threat management, and vulnerability management programs from an internal audit perspective.
- Lead audits and risk assessments covering cloud infrastructure, SaaS platforms, system development life cycles, and emerging technologies.
- Evaluate the design and use of AI and advanced analytics within the organization, including governance, model risk, data quality, ethical use, and cybersecurity implications from an internal audit perspective.
- Serve as a trusted advisor on emerging technology risks, including AI adoption, automation, and digital transformation initiatives.
Stakeholder Engagement & Advisory- Build strong relationships with senior technology, security, risk, and compliance leadership across regions.
- Present audit results, themes, and emerging risks to executive management and the audit committee in a clear and impactful manner.
- Provide pragmatic, risk-based recommendations that improve control effectiveness while enabling business objectives.
Team & Function Leadership- Lead, mentor, and develop audit professionals (internally and third-party firms) across multiple geographies.
- Contribute to the internal audit roadmap, methodology enhancements, and continuous improvement initiatives.
- Support quality assurance and improvement activities in alignment with IIA standards and regulatory expectations.
What technical skills, experience and qualifications do you need? - 8+ years of progressive experience in internal audit, technology risk, IT audit, or cybersecurity
- Proven experience working within large, international organizations operating in highly regulated environments (e.g., financial services, fintech, global services, or complex multinationals).
- Deep expertise in technology and cybersecurity risk management, including cloud, data, infrastructure, and third-party ecosystems.
- Strong understanding of internal control frameworks, regulatory requirements, and supervisory expectations across multiple jurisdictions.
Professional Credentials- Bachelor's degree in Computer Science, Information Security, Engineering or equivalent
- Professional certifications such as CIA, CISA, CISSP, CRISC, or equivalent preferred.
Key attributes- Executive-level communication and presentation skills.
- Strong judgment with the ability to balance risk, control, and innovation.
- Ability to operate effectively across cultures, regions, and time zones.
- Willingness to travel to CSC Headquarters in Wilmington, DE on quarterly basis and internationally as required.
*This role is not eligible for employment visa sponsorship (e.g., H-1B, TN, E-3) now or in the future.At CSC, compensation decisions are dependent on a number of factors including job location and the knowledge and experience of each individual. A reasonable estimate of the current range is $134,376.00 to $170,630.00#LI-AM1
#LI-Remote
#Internalauditopportunities
#CSCCareers
Responsibilities- Design and maintain a risk-based internal audit plan for technology and cyber domains.
- Lead and oversee technology, cybersecurity, and data-related audits across global operations.
- Manage third-party IT and cybersecurity audits, ensuring quality and alignment with CSC's risk framework.
- Provide independent assurance for information security, cyber resilience, and data protection.
- Evaluate compliance with regulations and standards like GDPR, ISO 27001, and NIST.
- Assess cybersecurity governance and incident response programs.
- Lead audits for cloud infrastructure, SaaS, and emerging technologies.
- Evaluate AI and advanced analytics governance and usage.
- Serve as an advisor for emerging technology risks and digital initiatives.
- Build strong relationships with senior leaders and present audit findings to executive management.
Qualifications- 8+ years of experience in internal audit, technology risk, or cybersecurity.
- Proven track record in large, international, highly regulated organizations.
- Expertise in technology and cybersecurity risk management, including cloud and data ecosystems.
- Strong understanding of internal control frameworks and regulatory requirements across jurisdictions.
- Bachelor's degree in Computer Science, Information Security, or Engineering.
- Professional certifications (CIA, CISA, CISSP, CRISC) are preferred.
- Excellent communication and presentation skills for executive-level interactions.
- Ability to balance risk, control, and innovation with a strong judgment.
- Cultural sensitivity and the ability to work across regions and time zones.
- Willingness to travel internationally as needed.