Full Job Description
Starbucks Internal Audit is seeking an experienced IT Audit Project Manager. Our team’s mission is to provide objective risk-based assurance, advice and insights to enable responsible growth of the Starbucks brand through a risk-informed lens. To accomplish this, we need individuals with experience in performing internal audits of technology and operational functions to identify improvement opportunities and verify compliance with established standards and controls.
The IT Audit Project Manager is responsible for evaluating risks and controls for IT infrastructure, applications, operations, cybersecurity, and related processes across Starbucks. This role will scope, plan and drive IT audit projects to completion, with direct responsibility to perform fieldwork and oversee audit team members. This role will model and act in accordance with Starbucks guiding principles.
Summary of Key Responsibilities
Responsibilities and essential job functions include, but are not limited to, the following:
Plan and execute IT audits, including risk assessment, scoping, planning, detailed fieldwork, and reporting.
Conduct reviews in highly technical areas of current or emerging technologies including cloud computing, agile system development, cybersecurity, network security, internal business applications, and General IT Controls.
Perform tests of control design and operating effectiveness, as part of the Starbucks IT SOX program.
Identify opportunities to use data analytics and automation in audits or SOX assessments to improve efficiency and effectiveness.
Create audit test steps, perform testing, determine issues, and provide high quality written and verbal communication of findings to management
Lead or support integrated audits involving business and IT control objectives
Work independently with little oversight
Manage multiple simultaneous projects progress against timelines and plans
May lead other department staff or external vendors hired to supplement projects
Stay up to date on current business and industry trends
Bachelor’s degree in Information Systems, Finance, computer science or related Business field
A minimum of 5 years of progressive audit experience in IT Audit, IT Assurance, Information Technology, public accounting, or closely related field
Knowledge of internal controls and audit processes
Knowledge of how to extract and analyze data
Demonstrated experience managing or coordinating internal audit projects involving multiple resources globally
Demonstrated experience working across functional areas to develop effective internal control recommendations that align with Starbucks and business unit objectives
Ability to communicate clearly and concisely, both orally and in writing, across all levels of management
Ability to establish positive working relationships with internal business partners
Ability to work successfully in ambiguous environments and gather information to develop focused internal audit procedures
Ability to balance multiple priorities under minimal supervision, while meeting required deadlines
Anticipates obstacles and acts to prevent or minimize their impact.
Experience leading teams and mentoring peers
Ability to travel domestically and internationally
Specific Functional and Technical Requirements
Excellent understanding of concepts related to information system audits, information security, cloud computing, application controls, general IT controls, and technology risks.
Knowledge of industry control frameworks such as COBIT, ISO 27001, US-NIST Cybersecurity Framework, PCI DSS, or closely related IT control standards.
Strong understanding of modern IT development methodologies, including Agile/Scrum and DevOps
Professional certification such as CISA, CISSP, CISM or comparable industry certification
The Following are Preferred
Experience auditing Oracle E-Business Suite modules, Amazon AWS implementations, or Microsoft Azure implementations.
Experience leading IT audits to evaluate Cloud Computing solutions, cybersecurity, identity and access management solutions, or network security.
MS or MBA in Computer Science, Information System Management, or Information Assurance.
Big 4, public accounting, or consulting experience
Experience performing audits in the Retail, Food & Beverage, or e-Commerce industries
Experience working with analytics applications such as ACL, Arbutus, Tableau, SQL scripts, Alteryx, etc.
Starbucks is an equal opportunity employer of all qualified individuals; including minorities, women, veterans, and individuals with disabilities, and regardless of sexual orientation or gender identity. Starbucks will consider for employment qualified applicants with criminal histories in a manner consistent with all federal, state, and local ordinances.