Description

The Manager, System Development Audit is accountable for planning, managing and executing complex system development audits, and other IT audits, enhancing the System Development Audit Methodology to incorporate The company’s and industry standards and best practices, and the delivery of high quality, professional, effective, value-added and risk-based audit services. Specific areas of work will primarily include system development audits with lesser emphasis on audits of IT operations and infrastructure, technical audit support to operational auditors, and providing risk management consulting to clients and other audit divisions.

Responsibilities:

1. Plan, manage and execute system development audits in accordance with department methodology and standards.
2. Lead or execute technical audits of IT operation and infrastructure.
3. Provide technical audit support to operational audits.
4. Perform risk assessments and ensure that audit scope covers all significant risks. Ensure that audit programs and audit testing is comprehensive at addressing the significant risks.
5. Work in partnership with the project management team to anticipate risks (business, technology and project management) and help to identify appropriate management practices to address these risks.
6. Work in partnership with IS support and operations team in the project to identify technical and security risks introduced by the new / changed solution/ infrastructure, and cost-effective risk management practices required to mitigate these risks.
7. Assist business unit or IT management by providing risk management consulting support and risk management education and training.
8. Manage audit projects within time and budget, reporting any timing problems or budget over-runs to appropriate Audit management.
9. Supervise audit staff assisting on project (which may include operations audits, and technical IS audits) and review completed files to ensure quality of work completed.
10. Prepare audit reports, including executive summary and rating of adequacy of risk management, making practical and value-added recommendations to improve risk management practices and the efficiency and effectiveness of operations; audits reports are to be clear, concise and well-organized, and issued within departmental service standards and according to departmental quality standards.
11. Present findings and recommendations to business unit management; resolve contentious issues and reach agreement on appropriate solutions to risk management and operational efficiency issues.
12. Provide feedback to staff assisting on assignments and contribute to their development and performance appraisals.
Qualifications
• University degree plus a recognized project management (PMP) or auditing (CIA, CISA) or security (CISSP) designation with at least 3 years internal or external IT audit experience a must.
• Ability to quickly understand business, systems and project management processes and their risk implications, analyze complex situations, reach appropriate conclusions, and make value-added and practical recommendations.
• Excellent knowledge of audit, project management and system development methodologies, control frameworks and risk management practices, and regulatory requirements, as well as fundamentals of information security management and practices.
• Excellent communication skills. Demonstrated ability to effectively communicate issues and recommendations orally and in writing, and to listen and consider ideas of others.
• Excellent sound judgment and common sense.
• Excellent customer focus and commitment to quality.
• Ability to develop and carry out plans to deliver quality results on time and within budget.
• Results oriented; ability to balance multiple priorities and assignments.
• Prioritize work so resources are devoted to area of highest risk.
• Proven relationship skills including a demonstrated ability to deal effectively with staff at all levels to Vice President.
• Leadership skills in achieving departmental, project and individual objectives, and in developing staff.
• Working knowledge of life insurance operations and company policies is an asset.
Challenges:
• Collaborating with management to obtain a consensus on establishing the problem, the nature and potential impact of risks, and corresponding recommendation to resolve the risk exposure.
• Managing business unit management’s expectations regarding deadlines and deliverables.
• Establish a high level of credibility and build professional relationships with business unit management.
• Prioritization and time management in a multi-tasking environment.
• Manage goals in situations without formal structure and adapt to change.
• Overtime may be required to meet internal or external deadlines.
• Keep current with new audit techniques, company policies and procedures, technologies.

It is unlawful to employ a person who does not have permission to live and work in Canada. Unless the advert states otherwise, please ensure you have this permission before applying.