Director, IT Audit

The Director of IT Audit is responsible for leading and managing the organization’s IT audit function and assessing the integrity, security, and compliance of technology systems and processes. This role provides assurance to the Board of Directors and oversees a global team of professionals. The Director will partner with Global Senior Leadership to provide strategic insights and recommendations that strengthen IT governance and risk management.

• Oversee the Global Technology RAAS team in executing independent reviews and evaluations of technology-related operations and activities to assess the reliability and integrity of internal controls over financial reporting systems, compliance with policies and regulations, and the effectiveness and efficiency of IT operations.
• Ensure audits confirm with the Institute of Internal Auditors (IIA) standards.
• Perform team member evaluations and establish development plans.
• Establish an environment that fosters team collaboration, innovation, ownership and positive culture.

• Oversee the Global Technology RAAS team in the execution of independent reviews and evaluations of technology-related operations and activities to assess the reliability and integrity of internal controls over financial reporting for systems that authorize transactions.
• Compliance with policies, laws, and regulations which could have significant impact upon IT operations and processes.
• The effectiveness and efficiency of IT operations.

• Conduct meetings with Senior Management to discuss audit scope, audit results, and associated management actions to mitigate identified control gaps.
• Document results of audits in formal reports that are distributed to Senior Brand and Corporate Management.
• Provide global management teams regular updates on audit status, and control enhancement opportunities.
• Create quarterly exhibits for the Board of Directors.

• Engage with, and build professional relationships with Senior Leadership across the Company to coordinate audit execution and IT risk evaluation.
• Develop and maintain effective engagement with the external auditors to provide support with annual audit activities.

• Oversee the execution of the annual Global IT SOX Assessment, including driving changes to enhance efficiencies and effectiveness of testing.
• Develop a program to test the design and operating effectiveness of SOX controls.
• Identify and report findings on a timely basis.
• Provide Senior Management insights and perspectives on control enhancements.

• Define IT Audit strategy and associated supporting programs.
• Conduct annual IT Audit Risk Assessment and develop the associated IT Audit Plan.
• Define and maintain program to efficiently deploy audit resources and provide audit coverage of key IT risks.
• Develop programs to leverage technology (e.g., IA, Data Analytics, audit tools) to increase effectiveness and efficiency of audit coverage.
• Link overall IT audit initiatives with RAAS departmental strategy to ensure effective risk coverage.

• The RAAS Technology Director oversees RAAS's Global IT Audit team that provides advisory services and assurance that controls are design well and operating effectively to mitigate IT risks across the Carnival Brands.
• Problem solving:
  The RAAS Technology Director is routinely called upon to oversee the performance of complex audits across a diverse technology environment and understand complex processes. Complex data analytics of both financial and operational data sets is routinely used to identify anomalies and interrelationships that could be an indication of risk manifestation. Given the diverse technology platforms and processes at Carnival, the Director must be able to develop pragmatic solutions to assist with the mitigate IT risks across a wide range of technologies.
• Leadership:
  The RAAS Technology Director oversees a global team of 10+ professionals. The team is located primarily in Miami but there are local resources that are located in California and Europe.

• Bachelor’s degree in Information Technology, Computer Science, Accounting, or related field;
  Master’s degree preferred.
• Professional certifications such as CISA, CISM, CISSP, or CIA strongly preferred.
• 10+ years of progressive experience in IT audit, risk management, or cybersecurity, including at least 5 years in a leadership role.
• Deep knowledge of IT governance frameworks (e.g., COBIT, NIST, ISO 27001).
• Strong understanding of cloud technologies, cybersecurity, data analytics, and emerging tech risks.
• Excellent communication, leadership, conflict resolution, and stakeholder management skills.
• Strategic thinking and ability to align IT audit with business objectives.
• Strong analytical and problem-solving skills.
• Ability to influence and drive change across complex organizations.
• High integrity and commitment to ethical standards.
• Ability to coach / develop a diverse team of professionals.
• Sound IT risk and control understanding…