IT Audit Manager
Job in
Sugar Land, Fort Bend County, Texas, 77479, USA
Listed on 2026-06-18
Listing for:
IES Holdings
Full Time
position Listed on 2026-06-18
Job specializations:
-
IT/Tech
Cybersecurity, IT Business Analyst, IT Project Manager, IT Consultant
Job Description & How to Apply Below
Overview
IES Holdings is seeking a hands-on, technically skilled and strategically minded IT Audit Manager to fill a newly created role within our Internal Audit team. This position will manage day-to-day IT audit activities, including managing IT resources, executing risk-based IT SOX testing, performing internal audits, and leading audit automation and data and analytics initiatives.
Responsibilities- SOX IT Controls Program:
Manage the annual SOX IT scoping process, including identification of in-scope systems, key reports, and IT dependencies supporting financial reporting. - Lead walkthroughs, test of design (TOD), and test of effectiveness (TOE) for SOX IT general controls and application controls.
- Coordinate with external auditors on IT SOX reliance strategy, integrated audit approach, and PBC deliverables.
- Track and report on IT control deficiencies.
- Advise on control design for new or significantly changed systems and processes impacting financial reporting.
- Drive automation of repeatable SOX testing processes to reduce manual effort and reliance on business stakeholders for data.
- IT Audit Planning and Execution:
Develop and maintain a disciplined, risk-based IT audit scope, ensuring audit resources are focused on high-priority risk areas. - Plan, lead, and execute risk-based IT internal audits, including operational IT audits, cybersecurity reviews, NIST assessments, and other non-SOX IT audit engagements.
- Communicate audit results, risk ratings, and remediation recommendations clearly to IT and business leadership.
- Data Analytics and Audit Automation:
Champion the adoption of audit automation, RPA, and AI-assisted techniques within Internal Audit. - Partner with IT and business intelligence teams to ensure the audit function has access to data in usable formats, reducing dependency on the business for evidence gathering.
- Develop automated scripts and workflows to test large user access datasets, configuration parameters, and system logs.
- Build repeatable analytics solutions that increase audit coverage across ERP and ancillary systems.
- Serve as the team s subject matter expert on data-driven audit methodologies.
- Technology Risk Advisory and Stakeholder Management:
Partner with IT, Cybersecurity, and Compliance teams to identify emerging technology risks and align audit coverage accordingly. - Provide advisory input on major technology initiatives, system implementations, and digital transformation projects.
- Monitor the technology risk landscape and adjust the audit plan proactively.
- Collaborate with the broader Internal Audit team on integrated audits spanning IT and business/operational risk areas.
- Team and Engagement Leadership:
Direct and manage IT audit resources on a day-to-day basis. - Contribute to the development of the annual IT audit plan and departmental strategic initiatives.
- Support future recruitment and onboarding of IT audit talent as the function grows; help build a high-performing, technology-forward audit team.
- Bachelor s degree in Information Systems, Computer Science, Accounting/Finance, or related field
- 5+ years of current, hands-on IT audit experience
- Deep knowledge of IT general controls (ITGCs), IT application controls, and ITGC/SOX frameworks
- Experience performing a broad range of IT internal audits beyond SOX, including operational IT audits, cybersecurity reviews, and NIST assessments
- Hands-on SOX IT controls experience, including coordination with external auditors
- Demonstrated experience with data analytics tools
- Proven track record driving audit automation or continuous monitoring initiatives
- Solid understanding of cybersecurity concepts, network architecture, and access management
- Strong knowledge of regulatory standards including COBIT, NIST, COSO, and IIA
- Excellent communication skills with the ability to explain technical risks to non-technical audiences
- CISA (Certified Information Systems Auditor) — strongly preferred
- Experience in manufacturing, construction, or other industrial industry environments
- Familiarity with Microsoft Dynamics
- Proficiency in Python or SQL for large-scale data testing and automation scripts
- Knowledge of emerging technologies: AI/ML governance,…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
Search for further Jobs Here:
×