IT Audit & Compliance Manager

Overview The IT Audit & Compliance Manager will partner with key business functions, internal IT staff, and external auditors to ensure that the SOX compliance program and key IT controls for processes and procedures are in place and monitored across the organization. Responsibilities Development of annual audit plan for all things Audit & Compliance Ensure that in scope Hussmann systems, databases, applications and IT processes comply with all J-SOX controls Oversight and execution of testing for IT General Controls (ITGC) and IT Application Controls (ITAC) relevant for J-SOX compliance Prepare all Audit & Compliance materials Prepare appropriate documentation including but not limited to narratives, workflows, control matrices, segregation of duties analysis, self-assessments, and audit workpapers Coordinate all activities / collaboration with external auditors, Panasonic and Hussmann Corporate Compliance, on IT related matters, including working with control owners to collect audit evidence Provide guidance and facilitate understanding of SOX and Compliance controls throughout the IT Organization Guide and develop junior auditor(s) staff, and assign tasks Perform assigned IT audits such as change management, privileged access review, self-assessment, and data center audit Review and assertion of Hussmann’s Storeconnect SSAE 18 SOC Report Work with third party providers to ensure SOC 2 compliance Track, report and monitor SOX application remediation efforts Keep IT Leadership abreast of Audit status including progress, milestones, risks and countermeasures Partner with application support teams to ensure new IT system implementations comply with existing policies and external audit requirements Incorporate the use of technology, audit tools, and techniques when deemed cost-effective Ability to manage contract execution Qualifications Bachelor’s degree in Computer Science, Management Information Systems, Business Administration, Accounting or related field. Certified Internal Auditor (CIA) or Certified Information Systems Auditor (CISA) or Certified Public Accountant (CPA) preferred Knowledge & Experience Minimum five (5) years or relevant experience working with IT SOX controls as an auditor or maintaining SOX controls in an IT environment Minimum two (2) years of direct supervisory experience Knowledge of Sarbanes-Oxley and internal control frameworks including COSO, COBIT, NIST and ISO Fundamental understanding of Information Technology including but not limited to cloud, operating systems, security, system development lifecycle (SDLC), infrastructure, and data management Skills Strong written and verbal communication skills Ability to document and communicate audit procedures, findings, and recommendations Ability to collaborate and communicate cross-functionally Balanced business skills including driving innovation, analysis, decision making, presentation skills, process management, project management, time management and prioritization Proficient PC skills in Office Products; Excel, Word, PowerPoint, Visio, Outlook, Project Business Acumen, including understanding business implications of decisions (project leadership, financial impact, business value); Aligns work with strategic goals Technical Acumen, including the ability to understand, analyze, and interpret complex data about the design, operation and/or enhancement of products, systems, or services Enterprise Thinking, including alignment to organizational goals, ability to interpret root cause / propose solutions, proactive recognition of patterns, and ability to lead Audit & Compliance projects Emotional Intelligence, including the ability to identify, understand and regulate own emotions Ability to manage conflict and identify solutions

#J-18808-Ljbffr