IT Audit Manager

Job Title
IT Audit Manager
Position Overview
The IT Audit Manager is responsible for leading and executing the Enterprise’s IT audit strategy, ensuring the effectiveness of IT controls, systems security, data integrity and regulatory compliance.  This role will closely partner with the Berkshire Hathaway internal audit team, Shaw business and technology leaders to assess risk, strengthen internal controls and support continuous improvement across enterprise systems.

Key Responsibilities
Lead the planning, execution, and reporting of IT audits and business audits, including risk-based audit planning and scoping.

Evaluate the design and operating effectiveness of IT general controls (ITGCs), application controls, and automated business process controls.

Conduct audits of enterprise systems, focusing on access controls, segregation of duties (SoD), configuration settings, change management, and data integrity.

Partner with the internal IT organization and serve as a collaborator and in support of the department’s goals and initiatives.

Utilize cloud-based GRC platform to manage audit workflows, workpapers, issue tracking, and reporting dashboards. 

Assess cybersecurity controls, infrastructure security, cloud environments, and third-party/vendor risk management.

Partner with business stakeholders to support SOX compliance and regulatory requirements.

Identify control gaps and provide practical, risk-based recommendations for remediation.

Monitor remediation efforts and validate corrective actions.

Manage and mentor audit staff, including reviewing workpapers and providing performance feedback.

Prepare audit reports and present findings to Senior Management and Executive Leadership.

Stay current on emerging technology risks, audit standards and regulatory developments.

Partner and serve as the point of contact with external auditors.

Qualifications
Bachelor’s degree in Information Systems, Computer Science, Accounting, or related field

5+ years of audit, risk, or information security experience

Knowledge of SOX, COBIT, NIST and/or other relevant frameworks

Experience with cloud-based environments and SaaS risk considerations

Professional certification required (CISA required)

Key Competencies
Strong analytical and risk assessment skills

Ability to build strategic alliances

Deep understanding of ITGCs, automated controls and ERP environments

Effective communication and executive presentation skills

Ability to manage multiple priorities and deadlines

Strong leadership and team development capabilities

Leadership Model Competencies:
Demonstrate Strategic Influence

Drive Results

Lead Change

Preferred Experience
Experience with ERP security configuration, role design and SoD analysis

Experience with data analytics tools

Familiarity with cloud-based GRC platforms

Familiarity with SOC reports

#ShawIND

Work Shift
8 Hr non-rotating shift, Hrs fall to in punch day, Observed Calendar, shift starts AM
Shaw Industries is an equal opportunity employer as to all protected groups, including protected veterans and individuals with disabilities.