Job TitleIT Audit Manager
Position OverviewThe IT Audit Manager is responsible for leading and executing the Enterprise's IT audit strategy, ensuring the effectiveness of IT controls, systems security, data integrity and regulatory compliance. This role will closely partner with the Berkshire Hathaway internal audit team, Shaw business and technology leaders to assess risk, strengthen internal controls and support continuous improvement across enterprise systems.
Key Responsibilities- Lead the planning, execution, and reporting of IT audits and business audits, including risk-based audit planning and scoping.
- Evaluate the design and operating effectiveness of IT general controls (ITGCs), application controls, and automated business process controls.
- Conduct audits of enterprise systems, focusing on access controls, segregation of duties (SoD), configuration settings, change management, and data integrity.
- Partner with the internal IT organization and serve as a collaborator and in support of the department's goals and initiatives.
- Utilize cloud-based GRC platform to manage audit workflows, workpapers, issue tracking, and reporting dashboards.
- Assess cybersecurity controls, infrastructure security, cloud environments, and third-party/vendor risk management.
- Partner with business stakeholders to support SOX compliance and regulatory requirements.
- Identify control gaps and provide practical, risk-based recommendations for remediation.
- Monitor remediation efforts and validate corrective actions.
- Manage and mentor audit staff, including reviewing workpapers and providing performance feedback.
- Prepare audit reports and present findings to Senior Management and Executive Leadership.
- Stay current on emerging technology risks, audit standards and regulatory developments.
- Partner and serve as the point of contact with external auditors.
Qualifications- Bachelor's degree in Information Systems, Computer Science, Accounting, or related field
- 5+ years of audit, risk, or information security experience
- Knowledge of SOX, COBIT, NIST and/or other relevant frameworks
- Experience with cloud-based environments and SaaS risk considerations
- Professional certification required (CISA required)
Key Competencies- Strong analytical and risk assessment skills
- Ability to build strategic alliances
- Deep understanding of ITGCs, automated controls and ERP environments
- Effective communication and executive presentation skills
- Ability to manage multiple priorities and deadlines
- Strong leadership and team development capabilities
Leadership Model Competencies: - Demonstrate Strategic Influence
- Drive Results
- Lead Change
Preferred Experience- Experience with ERP security configuration, role design and SoD analysis
- Experience with data analytics tools
- Familiarity with cloud-based GRC platforms
- Familiarity with SOC reports
#ShawIND
Work Shift8 Hr non-rotating shift, Hrs fall to in punch day, Observed Calendar, shift starts AM
