Sr. Director of Internal Audit

The Director of Internal Audit will oversee both the internal audit and IT audit functions within the organization. This role requires expertise in auditing financial and business processes as well as IT systems, ensuring that the organization’s operations and information systems are secure, compliant, and efficient. The Director will work closely with senior management, the Audit Committee, and external stakeholders to provide clear direction on both internal and IT governance, risk management, and control practices.

Key Responsibilities:

Internal and IT Audit Leadership: Lead and execute comprehensive internal and IT audit plans that align with the organization’s objectives and risk profiles, ensuring operational, financial, and IT controls are effective.

Risk Management: Collaborate on performing annual internal audit risk assessments, developing audit plans that address both operational and IT-related risks. Serve in a leadership role in the organization’s enterprise risk management function.

Audit Execution: Conduct and manage audits related to financial business processes, IT systems, Sarbanes-Oxley (SOX)/ICFR, and SOC audits to assess internal controls and compliance with regulatory requirements.

Audit Reporting: Present audit findings and recommendations to senior management and the Audit Committee, ensuring clarity in addressing both internal and IT-related risks.

Process Improvement: Identify opportunities for continuous improvement across all aspects of the organization’s operations, IT governance, and cybersecurity.

Internal Controls: Oversee and consult on the design and effectiveness of the organization’s internal controls over financial reporting (ICFR) and IT general controls.

Team Development: Mentor and develop the internal audit and IT audit teams, fostering a culture of professionalism, continuous improvement, and alignment with company values.

Stakeholder Engagement: Maintain critical partnerships with the C-Suite, Audit Committee, external auditors, and IT stakeholders, ensuring alignment on risk management strategies and controls.

Technology & Cybersecurity: Stay updated on emerging technologies, audit standards, and best practices in IT governance, cybersecurity, and internal controls, ensuring the organization adapts to new risks and regulatory demands.

Coordination with External Auditors: Collaborate with external auditors and consultants to ensure a cohesive approach to risk management, particularly in areas of IT and financial controls.

Qualifications:

Education: Bachelor’s or Master’s degree in Business, Accounting, Information Technology, Computer Science, or related field.

Certifications: Professional certifications such as CIA, CISA, CPA are required. A second certification in IT audit, fraud, or accounting is preferred.

Experience:

Minimum of 10-12 years of experience in both internal and IT auditing, with at least 5 years in a managerial or leadership role.Proven experience with IT audit methodologies, financial and operational audits, and SOX/ICFR control testing.

Skills:

1. Strong knowledge of contemporary risk management and control frameworks.
2. Ability to lead cross-functional teams and deliver high-quality audit projects on time.
3. Exceptional interpersonal, analytical, and problem-solving skills with the ability to present complex audit findings clearly.
4. Proficiency in IT audit frameworks (COBIT, ITIL) and familiarity with financial audit processes.

• Advanced proficiency in audit management software.

Preferred Experience:

1. Experience managing audits across both financial and IT domains.
2. Prior experience with a Big 4 or large national accounting firm, or an established internal audit practice.
3. Strong track record of working with senior leadership and providing board-level reports.
4. Familiarity with cybersecurity practices and standards, IT governance, and data protection regulations.