IT Audit Manager, Business Advisory

IT AUDIT, SOX & SYSTEMS - MANAGER/CONSULTANTPOSITION SUMMARYThe BAS IT Audit Manager is responsible for all phases of project and engagement management for multiple clients in a wide variety of industries.  Responsibilities include planning, directing, and completing information systems audits and business process control review engagement; conducting activities related to SOX and Sarbanes-Oxley attestations; and developing and managing staff.  The BAS IT Audit Manager works closely with partners and staff on client management, practice development, and business development.  The BAS IT Audit Manager is responsible for an assigned group of clients. ESSENTIAL DUTIES AND RESPONSIBILITIES-Adhere to the highest degree of professional standards and strict client confidentiality.-Manage, direct, and monitor client services teams on multiple engagements; plan, execute, direct, and complete information systems audits, business process control reviews, and other service offerings in a wide variety of industries, especially the financial services industry; and manage to budget.-Understand and manage firm risk on audits and proposals.-Develop a project vision and set challenging personal and client service team goals.-Manage, develop, train, and mentor staff on projects and assess performance for engagement and year-end reviews.-Review operational, financial, and technology processes to provide management with an individual assessment of business risk, internal control, and the overall effectiveness and efficiency of the process.-Work closely with clients and staff to develop client and project risk assessments, implement opportunities, and recommendations regarding business and IT process optimization, profit improvement, internal control, and compliance.-Work with audit and assurance teams and the client to plan engagement strategy, define objectives, and address technology-related controls risks.-Work with management consulting teams to implement controls in new systems deployment.-Evaluate and test business processes and business controls and identify areas of risk.-Lead engagements with performing general computer and application controls reviews.-Lead the preparation of Service Audit Reports (SAR) in compliance with SAS70. -Apply current knowledge of IT trends and IT systems processes to identify security engagement issues and risk management issues.-Lead the development and implementation of Business Recovery and Continuity Plans.-Lead the performance of security and penetration studies.-Participate in internal auditing outsourcing and co-sourcing engagements for clients.-Think strategically about practice enhancements and be able to embrace and manage change.-Maintain active communication with clients to manage expectations, ensure satisfaction, make sure deadlines are met, and lead change efforts effectively.-Consult, work with, and service client base to make recommendations on business and process improvement and serve as a business advisor to client.-Work closely with partners, managers, and staff to integrate practice development skills into a team approach to client service and new business development.-Team with partners and senior managers on proposals and business development calls.-Maintain strong client relations and cross-sell services within the assigned group of clients. -Recruit and retain senior associates and associates.-Coach senior associates and associates in developing and achieving goals and objectives for performance and professional development.-Attend professional development and training sessions on a regular basis.-Perform other job-related duties as necessary.QUALIFICATIONS AND REQUIREMENTS-Bachelor's degree in Accounting, Finance, or Information Technology.-Six to ten years of experience at a senior consultant level in a similar practice or function with a Big 4 firm, servicing cross-industry clients at a national level or experience in industry in Internal EDP Audit or Internal IT Audit.-Certification/license as CPA, CIA, CISA, CISSP, or CISM. -Banking / Regulator certification is a plus-Experience in Banking industry performing IT Control reviews modeled on the FFIEC work programs.-Knowledge of third party software utilized by financial institutions, such as Fiserv, Jack Henry, etc-Knowledge of financial institution processes such as deposits, check processing, e-banking, etc-ACL or Idea experience is a plus-Experience with SAS 70 reviews-Experience performing financial, operational, and system audits, as well as business process control reviews.  Knowledge and experience related to IT audits and Information Technology operations.  Ideal candidates have experience with multiple accounting software applications.  Security experience or training and Sarbanes-Oxley Section 404 experience a plus.-Areas of expertise should include at least some of the following:  access control software, security architecture and administration, Internet use/firewalls, network security awareness and enforcement, security policies and standards, operating systems (Windows NT / 2000, UNIX, AS400, Novell).-Strong experience in staff and audit management in an integrated client service team.-Computer expertise including proficiency in Microsoft Office Suite applications software and MS Project and an understanding of the impact of technology.-Ability to work additional hours as needed and travel on a regular basis to clients as required.-Bachelor's degree in Accounting, Finance, or Information Technology.-Six to ten years of experience at a senior consultant level in a similar practice or function with a Big 4 firm, servicing cross-industry clients at a national level or experience in industry in Internal EDP Audit or Internal IT Audit.-Certification/license as CPA, CIA, CISA, CISSP, or CISM. -Banking / Regulator certification is a plus-Experience in Banking industry performing IT Control reviews modeled on the FFIEC work programs.-Knowledge of third party software utilized by financial institutions, such as Fiserv, Jack Henry, etc-Knowledge of financial institution processes such as deposits, check processing, e-banking, etc-ACL or Idea experience is a plus-Experience with SAS 70 reviews-Experience performing financial, operational, and system audits, as well as business process control reviews. Knowledge and experience related to IT audits and Information Technology operations. Ideal candidates have experience with multiple accounting software applications. Security experience or training and Sarbanes-Oxley Section 404 experience a plus.-Areas of expertise should include at least some of the following: access control software, security architecture and administration, Internet use/firewalls, network security awareness and enforcement, security policies and standards, operating systems (Windows NT / 2000, UNIX, AS400, Novell).-Strong experience in staff and audit management in an integrated client service team.-Computer expertise including proficiency in Microsoft Office Suite applications software and MS Project and an understanding of the impact of technology.-Ability to work additional hours as needed and travel on a regular basis to clients as required.Additional Information: Travel Percentage: 50%