×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity IT Project Manager IT Business Analyst IT Consultant

Manager, Internal Audit, IT and Cybersecurity

Job in Pittsburgh, Allegheny County, Pennsylvania, 15222, USA
Listing for: UPMC
Full Time position
Listed on 2026-06-02
Job specializations:
  • IT/Tech
    Cybersecurity, IT Project Manager, IT Business Analyst, IT Consultant
Job Description & How to Apply Below
Job Summary

The Manager, Internal Audit - IT & Cybersecurity is responsible for leading and executing high‑quality IT and Cybersecurity internal audit and advisory engagements in accordance with Internal Audit professional standards. This role supports the delivery of timely, risk‑based audit results that reflect current regulatory, industry, and leading practices, and that drive measurable organizational improvement.

The Manager provides day‑to‑day leadership for IT & Cybersecurity internal audit engagements, including planning, execution, workpaper quality, reporting, and issue follow‑up. The role also includes responsibility for mentoring and developing auditors, supporting IT and Cybersecurity risk assessment activities, and contributing to continuous improvement of Internal Audit methodology, tools, and practices.

This position reports directly to the Director, Internal Audit - IT & Cybersecurity.

Location:

This position will be based out of Pittsburgh, PA. This position will have the potential to work from home with a hybrid schedule which includes some days in office and some days at home per week.

Key Responsibilities

Audit Execution and Quality

+ Lead and manage complex IT, information security, and Cybersecurity internal audit and advisory engagements from planning through reporting and follow‑up.

+ Ensure audit work is conducted in accordance with the IIA Global Internal Audit Standards, departmental methodology, and approved audit plans.

+ Develop, tailor, and enhance audit programs and testing procedures for complex systems, technologies, and IT‑enabled processes.

+ Review and approve audit work papers to ensure conclusions are well‑supported by sufficient, appropriate, and reliable evidence.

+ Identify root causes, assess risk significance, and develop practical, value‑added recommendations that improve control effectiveness and risk management.

Risk Assessment and Audit Planning Support

+ Participate in ongoing IT and Cybersecurity risk assessments, including the identification, prioritization, and evaluation of emerging technology risks.

+ Provide input to the IT & Cybersecurity Internal Audit plan based on risk, control maturity, system changes, and strategic initiatives.

+ Support the Director, Internal Audit - IT & Cybersecurity in assessing coverage adequacy and emerging risk themes.

+ Support integrated audits with other Internal Audit disciplines where technology or Cybersecurity risk is a key component.

Reporting and Stakeholder Management

+ Lead opening and closing meetings for assigned audits and clearly communicate audit objectives, observations, and recommendations to management.

+ Draft concise, objective, and executive‑ready audit reports with balanced judgment and defensible conclusions.

+ Build effective working relationships with IT, Cybersecurity, and business leaders while maintaining Internal Audit independence.

+ Participate in discussions with senior leaders as needed to explain audit observations and remediation expectations.

Issue Tracking and Follow‑Up

+ Oversee validation, tracking, and closure of IT and Cybersecurity audit issues and management action plans.

+ Monitor remediation progress and escalate delays or quality concerns to the Director, Internal Audit - IT & Cybersecurity as appropriate.

+ Assess the severity and significance of audit issues to support consistent risk reporting.

Team Leadership and Development

+ Provide day‑to‑day coaching, guidance, and feedback to IT & Cybersecurity Internal Audit staff.

+ Support performance evaluations, goal setting, and professional development for assigned auditors.

+ Assist with recruiting, onboarding, and training of IT & Cybersecurity Internal Audit personnel.

Methodology, Tools, and Industry Practices

+ Contribute to continuous improvement of Internal Audit methodology, templates, and tools, including data analytics and automated work papers.

+ Maintain awareness of evolving IT, Cybersecurity, and healthcare technology risks, regulatory expectations, and industry standards.

+ Serve as a subject‑matter resource within Internal Audit related to IT and Cybersecurity risks and controls.

Education and Experience Requirements

Bachelor's…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search