Manager, IT Audit and Compliance

Transamerica - Denver, CO (30+ days ago)3.7


Job Description Summary
This position will be responsible in supporting Transamerica IT Audit & Compliance (part of Execution & Integration - Technology team) activities across the business and technology landscape. The role will be tasked with interacting with external auditors, executing, tracking, and evaluating IT controls as well as collecting documentation and audit evidence throughout Transamerica Technology, and raising awareness of any risks identified to Management in decision making positions.
Job Description
Responsibilities

Support IT Audit & Compliance leader on all business and technology related initiatives.
Collaborate cross-functionally with teams including Internal Audit, Internal Controls, IT Risk Management, IT Security, and external auditors on process improvements, documenting standards and procedures, and ensuring deadlines are achieved.
Create IT processes flow and identify control points and weaknesses.
Test and document IT controls.
Creating and implementing solutions for control deficiencies; make recommendations for process efficiencies.
Assist in the identification and evaluation of risk/impacts associated with identified processes and technologies.
Project Management skills - implementation of new or enhanced processes.
Prepare reports/memos that detail the results of work and improvement recommendations.
Ensure the timeliness and quality of internal deliverables required for technology audits of information systems, platforms, and information security technologies, including IT and Security operating procedures.
Communicate audit progress and results to both department and business unit management. Develop and maintain detailed trackers and high level dashboards.
Monitor and track IT General Control (ITGC) documentation and evidence; maintain inventory of control owners.
Create and maintain a schedule/plan of audits and dates, deliverables and status.
Educate and coach internal Technology teams on audit principles and execution as needed.
Ability to proactively understand, assess and document key IT controls and risks across operational and information security domains.
Working knowledge within industry as well as handle around various regulatory frameworks (SOC 1, SOC 2, SOX, COBIT 5, ISO, NIST, etc.).
Ability to go toe to toe with auditors and resolve conflicts.
Ability to develop working relationships with the business, and a broad understanding of business processes in order to translate technical issues into business-related decision points.

Required Qualifications:
Bachelor’s degree in accounting, finance, business administration, management information systems, computer science, or equivalent experience.
Project management skills to work on large complex projects.
Problem-solving and decision-making skills to identify and address issues in order to mitigate risk. Communication skills to work cross-functionally with teams and document/track standards, procedures and audit schedules/plans.
Seven years of experience working in a technology related environment, specifically within Internal Audit, Information Security, IT Risk, IT area with SOX control testing responsibility, etc.
Extensive knowledge of IT systems security and IT infrastructure.

Preferred Qualifications:
Master’s degree in related field (MIS, IT, computer science, accounting, etc.).
Strong knowledge and/or prior experience in the insurance, pensions or financial services industry.
Experience working in a Big Four firm or part of an IT function responsible for SOC1 or SOX certifications.
Knowledge of IS audit standards (COBIT, COSO).
Relevant experience in SOC1, SOC2, and/or SOX control testing.
Varied IT and audit experience using mainframe, databases, UNIX.
Experience with client server systems, telecommunications, firewalls, intrusion detection, information security and Active Directory.
Experience in any of the following IT disciplines (application development, information security, technical architecture, control testing).

One or more of the following certifications:
(CISA) Certified Information Systems Auditor
(CRISC) Certified in Risk and Information Systems Control
(CISM) Certified Information Security Manager
(CIA) Certified Internal Auditor
Leadership and Behavioral Skills

Ability to go toe to toe with auditors and resolve conflicts.
Project management skills to work on large complex projects.
High level of integrity and trust.
Excellent written and verbal communication skills.
Working Conditions

Office environment.
Moderate travel (15–20%)
Our Culture at Transamerica we promote a Future Fit mindset. What is a Future Fit mindset?

Acting as One fosters an environment of positive collaboration
Accountability allows us to own the problem as well as the solution
Agility inspires new ideas, innovation and challenges the status quo
Customer Centricity encourages an above and beyond approach to our customer