Job Description
Job Description:. Position Summary. The Internal Audit function is an independent, objective assurance and consulting activity designed to add value and improve an organizations operations. It helps an organization accomplish its objectives by bringing a systematic, disciplined approach to evaluate and improve the effectiveness of risk management, control, and governance processes.
ESAB Internal Audit is seeking an Information Technology (IT) Auditor to join the team, reporting directly to the Director of Internal Audit. The IT lead will work closely with internal audit staff and third-party service providers responsible for the delivery of complex technology, cybersecurity, regulatory and integrated audits from designing an approach, planning, and scoping through proactive discussions with business and IT management, to report issuance and audit follow up. The Internal Audit team is viewed as an important pipeline for developing finance talent within the Company and offers the opportunity to partner with other strategic corporate functional teams, including, but not limited to, legal, reporting and control, mergers and acquisitions, business unit finance teams, as well as external internal audit stakeholders. The individual we seek is intellectually curious with a demonstrated background in continuous improvement in internal audit process and outcomes.
They will have strong technical acumen, a collaborative style, and a history of effective execution within an IT audit environment. This role offers opportunities to work in an international environment, audit across a diverse and fast-changing technology and digital environment and develop relationships with senior management. ESAB is a global company with significant revenues and employees outside the United States, so willingness and excitement to embrace global exposure is necessary for success in the role. Key Responsibilities.
Establish standard procedures and policies for IT auditing. Design and lead audits and projects to evaluate whether IT risks are properly managed and to identify best practices and improvements to advance risk management, governance, and control processes. Perform preand postimplementation reviews of system implementations or enhancements. IT security audits (eg, network, operating system, and data center), including evaluating if security Position summary vulnerabilities are properly identified and mitigated.
Play a critical role in ensuring controls are designed up front during system implementation projects. Manage resource scheduling, coordinating supplemental third-party resources as needed, to ensure the timely completion of IT audits. Evaluate the efficiency and effectiveness of IT control processes and procedures for various operational, financial and compliance processes. Provide oversight to Audit Staff (internal or co-sourced) in the planning and execution of IT audit controls testing.
Partner with IT management to ensure the business is compliant with key external reporting requirements, including assisting with reporting requirements under direct supervision of management. Partner with external auditors in the evaluation of automated controls for internal control over financial reporting (ICFR) Sarbanes Oxley. Provide status updates to Internal Audit department leadership and senior management. Collaborate with other Internal Audit team members to improve audit team capabilities in leveraging technology to audit more effectively.
Prepare high quality audit deliverables including planning memo, drafts of audit issues, audit reports, and presentations. Assist with preparation of reporting materials, including Audit and Steering Committee reports, and various status reports. Develop strong, collaborative working relationships across all levels of the Company; maintain on-going and constant communications with key stakeholders including the companys independent auditors. Contribute thought leadership and innovative ideas to continuously improve the IT audit methodology procedures.
Keeps current on business/industry changes and their effect on the audit plan/approach and Risk Assessments. Establish and execute personal development objectives and plans. Participate in special projects, including acquisition due diligence and integration activities. Targeted Experience & Requirements.
Bachelors degree in management information systems, computer science or a related field. Certified Information Systems Auditor (CISA) with a big four public accounting firm strongly preferred. 8+ years of relevant work experience in a big four firm, large global public company, or a combination of both. Demonstrated experience with ICFR.
A deep understanding of IT control processes including information security, access controls, change management and IT operations among others. Understanding of information security standards, best practices for securing computer systems and applicable laws and regulations. Understanding of third-party assurance reports (SOC1,2,3). Understanding of multiple technology domains including, Windows, database management, networking, and UNIX (preferred).
Excellent leadership, written and verbal communication, interpersonal, and collaboration skills. Ability to maintain a positive attitude and embrace change, thrive in a fast-paced environment. Strong analytical, problem solving, and influencing skills to drive internal controls strategy and build effective partnerships across the company. People management skills including the ability to mentor, review performance, and develop talent.
Problem-solving skills that demonstrate critical and logical thinking to reach a solution. Proficiency in MS Excel, Word, and PowerPoint. Travel required, domestic and international, approximately 20%. Preferred.
Experience with Oracle, SAP, M3 or large ERP Systems. Experience working with third party IT service providers. Competencies & Behaviors Needed. Exceptional communicator at all employee levels including senior executives.
Drives continuous improvement. Effective at building relationships, trust. Strong collaboration skills across functions and business platforms. Comfortable working in a global matrix organization.
Focus on delivering results and continuous improvement. Manages workload efficiently and effectively. Good at synthesizing data and distilling key points. Can dive deep into detail to support root cause analysis, yet understands the big picture.
Insightful, deductive reasoner, fact-based problem solver. Influencing and driving performance without authority.
