JOB DESCRIPTION
Job Purpose
As the IT Audit Manager, you will plan and lead engagements to evaluate IT processes and security controls based on frameworks and standards such as NIST and ISO 27001. You will perform IT compliance assessments based on industry standards and regulatory requirements. In this role, you will partner with IT management and technical leads in analyzing control deficiencies and developing remediation plans to strengthen Straumann’s Internal Control System.
Main Tasks and Responsibilities:
1. Plan and execute IT audits across the organization, document and report audit results in accordance with professional standards for internal auditing.
2. Establish and maintain IT senior management relationship.
3. Evaluate the efficiency, effectiveness, and compliance of operation processes with corporate IT policies and related compliance regulations and assist Internal Control Team to implement governance where it doesn’t exist.
4. Assess the exposures resulting from ineffective or missing control practices.
5. Accurately interpret audit results against defined criteria.
6. Provide a written and verbal report of audit findings.
7. Advice management to improve IT compliance, manage risk and bolster effectiveness.
8. Conduct annual IT risk assessments with management.
9. Develop and execute risk-based audit plans to evaluate the effectiveness of the organization's internal controls, risk management, and governance processes.
10. Lead and conduct internal audits, including planning, scoping, fieldwork, reporting, and follow-up activities.
11. Evaluate the adequacy and effectiveness of the organization's risk management processes and identify areas of improvement.
12. Assess the effectiveness of the organization's financial, operational, and compliance controls and provide recommendations to management for improvement.
13. Identify control deficiencies, develop recommendations, and work with management to implement corrective actions.
14. Communicate audit findings and recommendations to management and other stakeholders in a clear and concise manner.
15. Monitor and follow up on the implementation of audit recommendations to ensure that they are effectively addressed.
16. Stay current with emerging trends and best practices in internal auditing, risk management, and governance.
17. Support organization-wide risk assessments to identify significant risks or exposure related to internal controls or compliance with Straumann Group’s policies and procedures, laws and regulations, efficiency of operations, and accuracy of programmatic and financial reporting.
18. Support the operational and business risk assessment process.
19. Close collaboration and exchange of information with external auditors.
20. Support initiatives and/or contribute to other internal activities.
Qualifications:
21. Understanding of Governance, IT Risks and Controls, system architecture (Linux, Windows) and programming fundamentals, network ports, protocols, architecture, information security architecture, cloud computing (AWS, M365), etc.
22. Experience in audit or advisory exposure in digital transformation (Cloud, Information Security, etc.)
23. Customer-focused, collaborative, flexible, persistent, and results-oriented with good communication and interpersonal skills.
24. Very good know-how of SAP FICO module and any other ERP are a plus.
25. Strong knowledge of internal auditing standards, principles, and practices.
26. Trained as IIA quality assessor is a plus.
27. Fluent in English - German and any other language is an advantage.
28. Willingness to travel globally approx. 40%.
29. International work experience, preferably in a listed company.
Education:
30. Bachelor's / Master’s degree in information security along with professional certification CISA, CISM, CISSP, ISO 27001 Lead Auditor, CGEIT, CIA, etc.
31. Fluent in English - German and any other language is an advantage.
32. Willingness to travel globally approx. 30-50%.
Experience:
33. Minimum of 6-8 years of IT audit-related experience, preferably 4-5 years of experience in the Big 4 environment.
34. International work experience, preferably in a listed company.
35. Experience with data analytics and audit management software is a plus.
Personal Attributes & behaviors:
36. Strong sense for integrity, compliance, objectivity and high-quality deliverables
37. Proactive, hands-on high performer with the willingness bring own career to the next level
38. Ability to effectively communicate across all hierarchical level and to establish a trust-based relationship
39. Ability to work independently and as part of a team.
40. Very good communicator with leadership skills.
41. Strong project management skills.
42. Good analytical, problem-solving and critical thinking skills.
43. Target and deadline oriented
44. Result driven and solution developer with the aim to continuously improve existing conditions.
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or disability.
Employment Type: Full Time
Alternative Locations: Germany : Freiburg || Spain : Madrid || Switzerland : Basel
Travel Percentage: 0 - 40%
Requisition ID: 18786
Equal Opportunity and Affirmative Action Employer (US applicants only)
Straumann Group is an equal opportunity employer and will not discriminate against any employee or applicant for employment on the basis of race, color, sex, sexual orientation, gender identity, religion, creed, national origin, age, veteran status, or disability unrelated to job requirements. Straumann Group will take affirmative action to ensure that qualified applicants are employed and that employees are treated without regard to their race, age, color, religion, sex, sexual orientation, gender identity, national origin, veteran and disability status. In compliance with U.S. Department of Labor Executive Order 11246, Section 503 of the Rehabilitation Act, and Section 4212 of the Vietnam Era Readjustment Assistance Act, Straumann Group has developed and maintains an affirmative action program and plan.
We comply with the Employee Polygraph Protection Act (EPPA), and Massachusetts law. It is unlawful for private employers to use lie detector tests for pre-employment screening or during employment, except in limited circumstances. An employer who violates this law shall be subject to criminal penalties and civil liability.
.
Get tailored job recommendations based on your interests.
profile icon