IT Audit Manager; Remote

You desire impactful work.

You’re
RGA ready

RGA is a purpose-driven organization working to solve today’s challenges through innovation and collaboration. A Fortune 200 Company and listed among its World’s Most Admired Companies, we’re the only global reinsurance company to focus primarily on life- and health-related solutions. Join our multinational team of intelligent, motivated, and collaborative people, and help us make financial protection accessible to all.

The IT Audit Manager leads enterprise IT security and technology audits as well as select advisory engagements, with a primary focus on identity and access management, data protection, cloud security, and emerging technology risks. This position utilizes advanced technical expertise in cyber, technology, and IT audit to assess the design and effectiveness of controls, synthesize risk insights, and deliver clear, actionable communications to senior IT leadership and the Audit Committee.

Working in close partnership with the Global Security Office, Enterprise Risk, Compliance, and co‑sourced partners, the IT Audit Manager ensures comprehensive integrated assurance and contributes to strengthening RGA’s overall technology and security posture.

• Leads planning, scoping, and execution of complex IT audits, ensuring quality, budget discipline, timely delivery, and effective stakeholder engagement.

• Identifies risks, develops audit programs, resolves delivery obstacles, and guides teams through resolution of issues.

• Evaluates alignment with IT governance processes, enterprise architecture, technology strategy, and global regulatory requirements.

• Leads audits across key domains, including identity and access management, cloud security and operations (e.g. AWS, Azure), data protection, vulnerability management, change management, logging and monitoring, incident response, operational resilience, and third‑party/vendor oversight, ensuring comprehensive coverage of enterprise technology risks.

• Conducts risk-based audits in accordance with the Global Audit Charter and IIA Standards, with control testing aligned with relevant frameworks such as NIST, ISO 27001, COBIT, and the CSA Cloud Controls Matrix, as appropriate.

• Works in close partnership with the Global Security Office, Risk, Compliance, and co‑sourced audit partners to coordinate audit objectives, reduce redundant efforts, and develop integrated risk insights that inform enterprise decision‑making.

• Drafts comprehensive and concise audit reports, prepares executive‑level communications, assists in the creation of materials for senior IT leadership and the Audit Committee, and oversees and verifies management’s remediation activities through completion.

• Enhances audit effectiveness by incorporating data analytics, automation, and, when appropriate, AI‑enabled techniques to expand coverage, improve testing precision, and maintain strong evidence discipline.

• Provides coaching and professional development to audit staff, reviews work papers and deliverables to ensure adequacy and clarity, and establishes clear expectations for high‑quality communication, stakeholder engagement, and disciplined execution.

• Bachelor’s Degree in Management Information Systems, Computer Science, Accounting, Business or equivalent combination of related work experience and education

• One or more of the following certifications:
  Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), or Certified Information Security Manager (CISM)

• 5+ years of internal/external IT audit, or equivalent, experience

• Advanced degree in Management Information Systems, Accounting, Finance or equivalent

• Certified Public Accountant (CPA), Certified Internal Auditor (CIA), cloud‑security credentials such as CCSK or CCSP

• Extensive knowledge of global cyber security regulations

• Prior experience in a professional services…