IT Audit Manager

Toronto, ON

Reporting to the Director of internal Audit, the IT Audit Manager is responsible for independent assessment and evaluation of risks, internal controls, processes and management practices related to information technology. This role will provide the opportunity to combine your technical, auditing and people skills to effectively advise and support the enterprise on risk related matters. You will join a dedicated and motivated team with exposure to multiple lines of business within.

Roles and responsibilities

Execute audits that primarily deal with technology in the areas of IT infrastructure, processes, applications, operations, security and emerging technologies
Manage the end to end audit lifecycle – planning, execution, reporting and follow up
Provide lead audit and advisory support for fast paced major systems implementations across the enterprise
Use data analytics to increase effectiveness and efficiency of audit coverage
Ensure compliance to policies, standards and procedures according to departmental and enterprise requirements
Provide input and recommendations to audit management in developing a risk based annual audit plan
Provide advisory services to business management on issues related to IT risk assessment, controls and governance
Participate in special investigations related to Information Technology and system configurations, as required
Work on initiatives to increase the effectiveness, value and reputation of the audit department

Qualifications

Undergraduate degree in an Information Technology related field such as Computer Science or IT Management
Certified Information Systems Auditor (CISA).
The preferred candidate may also have one or more of the following designations: CIA, CISSP, CISM or CPA
5+ years of working experience in IT Internal Audit and/or consulting practice with a strong risk-based audit foundation
3 or more years experience with a big 4 accounting firm in internal audit, advisory, risk, or compliance would be considered an asset.
The candidate must have strong technical knowledge of IT platforms, operating systems, network services, security, privacy and business applications
Experience with data analytics or an analytical mindset
Experience auditing large enterprise IT implementations with knowledge of project methodologies, project controls and ability to effectively work with cross functional project teams
Knowledge of Audit assurance, governance and control frameworks such as COBIT, NIST and ISO, Service Organization Controls (SOC) Reporting standards (e.g. CSAE 3416, Section 5025, AT 101) sufficient to interpret and apply IT risk and control concepts
Strong negotiation and mediation skills with the ability to form an opinion on risks, controls and impact to business
Ability to present complex information clearly and influence the outcome through effective verbal and written communication
Good interpersonal skills and ability to cultivate strong working relationships in a team environment is a must

Tilray welcomes applications from all qualified individuals and is committed to employment equity and diversity in the workplace.

Accommodations are available for applicants with disabilities throughout the recruitment process. If you require accommodations for interviews or other meetings, please advise when submitting your application.

Please note that Tilray does not authorize, engage, or sponsor any consultants, agencies or organizations that seek certain personal or financial information from you (e.g. passwords, login ids, credit card information). High Park does not charge any application, processing or onboarding fee at any stage of the recruitment or hiring process.

When replying to emails, please ensure the sender name and email address match exactly. Please also ensure the Reply-To address matches the sending address exactly.

If you are concerned about the authenticity of an email, letter, or call purportedly from, for, or on behalf of High Park, please send an email inquiry to infosec@tilray.com