Manager, IT Infrastructure Audit [P3]

Why you’ll love working here:

• high-performance, people-focused culture

• our commitment that equity, diversity, and inclusion are fundamental to our work environment and business success, which helps employees feel valued and empowered to be their authentic selves

• learning and development initiatives, including workshops, Speaker Series events and access to LinkedIn Learning, that support employees’ career growth

• membership in HOOPP’s world class defined benefit pension plan, which can serve as an important part of your retirement security

• competitive, 100% company-paid extended health and dental benefits for permanent employees, including coverage supporting our team's diversity and mental health (e.g., gender affirmation, fertility and drug treatment, psychological support benefits of $2,500 per year, parental leave top-up, and a health spending account).

• optional post-retirement health and dental benefits subsidized at 50%

• yoga classes, meditation workshops, nutritional consultations, and wellness seminars

• the opportunity to make a difference and help take care of those who care for us, by providing a financially secure retirement for Ontario healthcare workers

Job Summary

The Manager, Internal Audit IT is responsible for leading, planning and executing IT controls testing, including providing feedback on IT testing procedures over IT General Controls (ITGC), technical infrastructure and cybersecurity IT controls.

This position will contribute and support the Internal Audit Division’s Audit Plan through assurance engagements such as; integrated audits, operational audits, continuous monitoring and other assurance engagements. The Manager may also lead or participate in the projects and initiatives that contribute towards the division’s strategies and objectives. The position will also partner with IT, Finance and Business groups to identify areas of risk, make valuable recommendations on operational controls, and influence changes and decisions. This position works closely with the Director, Internal Audit and requires excellent verbal and written communication skills, with the ability to effectively present audit issues of varying complexity to senior management across various divisions at HOOPP.

What you will do:

Internal Audit Plan Support

• Review and prepare detailed audit working papers for IT controls testing, and ensure the work is of the highest quality and consistent with established standards, within prescribed time, budget and scope parameters. 

• Work with client management to develop action plans to address the root cause of the issues. Ensure recommendations provide realistic and workable solutions, either being adopted elsewhere within the organization or in the industry, to mitigate the risk and exposure in the long term.

• Assist the Director, Internal Audit in planning, scoping and risk assessments during audit planning.

• Assist the Director, Internal Audit to resolve complex issues with management and reach agreement on appropriate solutions to risk management and operational issues. 

• Communicate with and educate process owners on the importance of controls, effective control environments and the role of Internal Audits.

• Ensure that audit reports are issued timely, are credible and meet departmental standards.

• Ensure the timely follow-up, monitoring and accurate reporting of management remediation efforts of audit observations. Utilize technology to improve effectiveness and efficiency of audit process.

• Maintain a sufficient and current understanding of the organization and the underlying risks.

• Support the audit team in the achievement of individual, divisional and team goals.

Strategic Projects and Initiatives

• Assist the Director, Internal Audit in planning, developing and implementing special projects

• Work with stakeholders to build, design, digitalize and automate IT and operational controls through Continuous Monitoring and Internal Audit’s Data Analytics programs

What you bring:

• Undergraduate degree with emphasis in accounting, finance or a related business field is required. A CA/CPA/CGA/CMA and a Certified Information Systems Audit Designation (CISA) or Certified Information Systems Security Professional (CISSP) is required.

• Experience managing and developing high-performing teams.

• Expert knowledge on best practices for internal controls with a strong understanding of information system risks and ITGCs and end user computing (EUC) controls.

• Knowledge of IT applications and systems such as Oracle, SAP, PowerBI, AWS, and Microsoft Azure are considered an asset.

• Strong technical audit and financial skills with a comprehensive understanding of Internal Auditing Standards, GAAP, C-SOX, COSO.

• Excellent understanding of business processes. Strong knowledge of Capital and Private Markets, Investment or related risk management/compliance/operations functions would be an asset.

• Proficient in all aspects of the internal audit cycle with a minimum of 8 years executing and leading relevant internal audit engagements on IT infrastructure (ie application, databases, network), Cybersecurity and/or IT applications.

• Subject matter expertise on one or more focused areas; IT General Controls, SDLC/agile projects, IT applications, databases, operating systems, network, virtualization and Cloud computing.

• Thorough knowledge of Microsoft Word, Excel, and Powerpoint is required.

• Proven ability to collaborate, partner, initiate and maintain cross-departmental and intra-divisional relationships.

• Excellent effective time management and organizational skills to meet tight deadlines as well as the flexibility to adapt to changing priorities.

• Strong attention to detail, analytical, negotiating and reasoning skills required.

• Self-starter, high level of initiative and professionalism.

• Undergraduate degree with emphasis in accounting, finance or a related business field required. A CA/CPA/CGA/CMA and a Certified Information Systems Audit Designation (CISA) or a Certified Information Systems Security Professional (CISSP) is required.

• Minimum of 8 years executing and leading relevant internal audit engagements preferably in the Financial Services or Pension Fund industry. This should include strong working knowledge of the IT infrastructure (ie application, databases, network), Cybersecurity and/or IT applications auditing, risk management or operational

•  Technical audit and financial audit experience with a comprehensive understanding of Internal Auditing Standards, GAAP, C-SOX, COSO.