IT and Cybersecurity Audit Manager
Insight Global, Meriden, CT, United States
Job Description
The IT & Cybersecurity Audit Manager supports the Internal Audit function by assessing the effectiveness of IT general controls and cybersecurity controls across the organization. This role partners closely with IT, Finance, and business leaders to evaluate risk, ensure compliance, and strengthen the company's cybersecurity posture, governance, and risk management framework.
Key Responsibilities
Execute risk-based IT and cybersecurity audits, including ITGCs, SOX, and operational audits
Perform global IT and information security risk assessments, including risk and control matrices
Develop and support the annual, risk-based IT & cybersecurity audit plan
Lead audit planning, scoping, execution, and reporting for IT and cybersecurity engagements
Evaluate the design and operating effectiveness of IT and security controls
Conduct system, infrastructure, and application audits to ensure security and compliance
Prepare and present audit reports, including findings, risk ratings, and remediation recommendations
Track audit findings, validate corrective actions, and escalate unresolved issues as needed
Partner with management on process improvements and risk mitigation strategies
Support data privacy, cybersecurity, vulnerability, and penetration testing initiatives
We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.
Skills and Requirements
Bachelor's degree in MIS, Computer Science, IT, or related STEM field
6-8+ years of experience in IT audit, cybersecurity, or IT risk (public accounting or large enterprise preferred)
Strong knowledge of ITGCs, SOX, cybersecurity controls, and risk management frameworks
Experience auditing infrastructure, networks, systems, and data centers
Proven ability to analyze security incidents and communicate risk to stakeholders
Strong analytical, problem-solving, and report-writing skills
Excellent communication and stakeholder management abilities
Ability to manage multiple priorities in a fast-paced environment - One or more of the following: CISA, CISSP, CISM, CIA, CCSP, CEH, CompTIA Security+, SSCP
Experience with penetration testing and vulnerability assessments
Exposure to global or multi-entity audit environments
Fluency in Mandarin, Spanish, or a European language
The IT & Cybersecurity Audit Manager supports the Internal Audit function by assessing the effectiveness of IT general controls and cybersecurity controls across the organization. This role partners closely with IT, Finance, and business leaders to evaluate risk, ensure compliance, and strengthen the company's cybersecurity posture, governance, and risk management framework.
Key Responsibilities
Execute risk-based IT and cybersecurity audits, including ITGCs, SOX, and operational audits
Perform global IT and information security risk assessments, including risk and control matrices
Develop and support the annual, risk-based IT & cybersecurity audit plan
Lead audit planning, scoping, execution, and reporting for IT and cybersecurity engagements
Evaluate the design and operating effectiveness of IT and security controls
Conduct system, infrastructure, and application audits to ensure security and compliance
Prepare and present audit reports, including findings, risk ratings, and remediation recommendations
Track audit findings, validate corrective actions, and escalate unresolved issues as needed
Partner with management on process improvements and risk mitigation strategies
Support data privacy, cybersecurity, vulnerability, and penetration testing initiatives
We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.
Skills and Requirements
Bachelor's degree in MIS, Computer Science, IT, or related STEM field
6-8+ years of experience in IT audit, cybersecurity, or IT risk (public accounting or large enterprise preferred)
Strong knowledge of ITGCs, SOX, cybersecurity controls, and risk management frameworks
Experience auditing infrastructure, networks, systems, and data centers
Proven ability to analyze security incidents and communicate risk to stakeholders
Strong analytical, problem-solving, and report-writing skills
Excellent communication and stakeholder management abilities
Ability to manage multiple priorities in a fast-paced environment - One or more of the following: CISA, CISSP, CISM, CIA, CCSP, CEH, CompTIA Security+, SSCP
Experience with penetration testing and vulnerability assessments
Exposure to global or multi-entity audit environments
Fluency in Mandarin, Spanish, or a European language