It Audit Manager

Description:

The role of the IT Audit Manager is to deliver technology-focused audit assignments as part of a wider team to verify applications (including their development and support) and infrastructure are effectively controlled and that risks are mitigated. You will be required to lead and participate in the planning and execution of audit assignments in line with the audit methodology, producing findings and draft reports for presentation to Senior Management. The role will report directly to the Senior Manager of Internal Audit in Canada, whilst providing support to the Fidelity IA global audits as required.

The successful candidate will play a key role to help the Senior Manager of Internal Audit in Canada to continue to grow and deepen the technology audit footprint (depth and breadth), and have the opportunity to help shape and build technology audit capabilities in Canada and across the FIL group

What You Will Do
 

• Plan and execute audit scope coverage, fieldwork and testing within the given timeframe.
• Document audit testing using best practices and form conclusions based on the outcome of the testing, including the identification of areas in need of improvement, and assisting Technology in the development of an action plan.
• Keep Internal Audit and stakeholders management fully informed of the progress of all assignments and following-up issues to ensure that all agreed improvements have been actioned.
• Work alongside business auditors to deliver ‘integrated’ audits by testing specific IT general and application controls supporting business process.

• Provide advisory type of services to stakeholders by quickly developing an understanding of management requests / projects, and providing real time feedback and recommendations to assist business mitigating risks.
• Draft audit reports that provide a clear description of issues identified, related business impact, and proposed action plans/control enhancement opportunities.
• Engage with stakeholders for the validation and timely closure of audit findings.
• Perform business unit risk assessments, evaluates business initiatives, organizational and regulatory changes, and identify any audit gaps and control weaknesses within the information technology audit universe.
• Work with business stakeholders to assess, identify risks, advise and consult on a wide variety of technology related topics, including but not limited to Cybersecurity; Cloud Computing; Data Governance and Emerging Technologies
  • Cybersecurity
  • Cloud
  • Data Governance
  • Emerging Technologies
• Monitor and research on all relevant Bwise incidents and provide updates on emerging risks
• Coordinates audit activities with the external auditors and the broader FIL technology audit team

The Expertise You Bring
 

• Expert knowledge and extensive experience related to technology controls and risks associated with products across asset management.
• Strong knowledge of audit principles, frameworks and standards such as IIA, ISACA and NIST standards.
• Outstanding oral and written communication skills and ability to communicate clearly and concise at all levels.
• Strong client management, and problem-solving skill, and ability to respond effectively to changing business needs.
• Ability to build strong relationships and influence senior stakeholders.
• Excellent organizational skills and delivery focus with an ability to work to tight deadlines.
• High energy, positive attitude and goal driven; ability to work effectively in a team while being flexible, adaptable.
   

We are in search of a candidate with the following
 

• 5+ years related experience
• University degree (BS/BA in accounting, computer science or other IT-related field) or equivalent work experience.
• CISA/CISM or equivalent. CISSP or Security related certifications will be a plus.
• Experience in leading IT application and infrastructure related audit engagement throughout an audit cycle from planning to reporting, preferably in financial services (i.e., asset management, brokerage).
• Deep experience with most common operating systems (Windows, Linux, iOS, Android) and databases (Oracle, SQL as well as cloud-based database, i.e., Snowflake).
• Experience with enterprise cloud infrastructures such as Amazon Web Services, Office 365, and Azure.
• Sustained hands-on technical experience working in cybersecurity and ransomware.
• Strong understanding of emerging technology (AI/ML).
• Data analytics, application programming, Agile auditing and crypto & blockchain will be a plus.