Leader, IT Audit

RH is looking for an IT Audit Manager to plan and execute of all phases of SOX ITGC compliance, including planning, testing, and remediation with a focus on quality and in alignment with current PCAOB standards.


  • Live Our Values: People, Quality, Service and Innovation
  • Execution of all phases of SOX ITGC compliance, including planning, testing, and remediation with a focus on quality and in alignment with current PCAOB standards

  • Ensure staffing for SOX compliance is achieved with quality resources in alignment with the department fiscal budget

  • Assist control owners in the establishment and on-going maintenance of control and process documentation (policies, procedures, control matrices, etc.).

  • Assist control owners in identifying and resolving internal control issues. Provide support, training and coaching of process owners and articulate their role in the internal controls and compliance process.

  • Own the testing of all key reports and application controls in partnership with Accounting and the external auditors

  • Ensure that IT audit issues are well defined and root causes are identified, while establishing sustainable remediation plans and performing impact analysis as needed

  • Work in cross-functional teams (IT, Operations, Accounting, Finance, etc.) to help create integrated system requirements, and to provide risk and controls expertise.

  • Perform process re-engineering by challenging the status quo of current processes and suggesting improvements or alternatives.

  • Assist in building a robust IT risk assessment tool by evaluating business and technology risks

  • Develop metrics to identify and assess ongoing risk gaps for Management

  • Develop and conduct all phases of IT audits including planning, fieldwork, reporting results to management and performing follow-up.

  • Audits may include the following subject matter:

    • Change control management procedures

    • Physical and logical security access

    • Firewall and network security reviews

    • Computer and datacenter operations

    • System development life cycle methodologies


  • 5 - 7 years IT audit experience in a publicly traded company or public accounting firm, with emphasis on Security, Change Management and Computer Operations audit

  • Demonstrate an understanding of GAAP standards for financial reporting and corresponding manual / business process key controls (Previous experience with inventory and stock ledgers preferred)

  • Proven leadership and communication skills with demonstrated experience presenting ideas to senior leadership and positively influencing process and control discussions

  • Positive attitude and high energy approach to project management thrive in an environment with changing priorities and multiple work-streams

  • Ability to operate independently and reprioritize frequently

  • Strong orientation toward internal control, risk assessment and operational auditing

  • Experience working on small teams and / or with contractor resources to achieve deadlines

  • CISA designation (preferred)

Don't Be Fooled

The fraudster will send a check to the victim who has accepted a job. The check can be for multiple reasons such as signing bonus, supplies, etc. The victim will be instructed to deposit the check and use the money for any of these reasons and then instructed to send the remaining funds to the fraudster. The check will bounce and the victim is left responsible.