IT and Cybersecurity Audit Manager

The IT & Cybersecurity Audit Manager supports the Internal Audit function by assessing the effectiveness of IT general controls and cybersecurity controls across the organization. This role partners closely with IT, Finance, and business leaders to evaluate risk, ensure compliance, and strengthen the company’s cybersecurity posture, governance, and risk management framework.

Key Responsibilities

- Execute risk-based IT and cybersecurity audits, including ITGCs, SOX, and operational audits
- Perform global IT and information security risk assessments, including risk and control matrices
- Develop and support the annual, risk-based IT & cybersecurity audit plan
- Lead audit planning, scoping, execution, and reporting for IT and cybersecurity engagements
- Evaluate the design and operating effectiveness of IT and security controls
- Conduct system, infrastructure, and application audits to ensure security and compliance
- Prepare and present audit reports, including findings, risk ratings, and remediation recommendations
- Track audit findings, validate corrective actions, and escalate unresolved issues as needed
- Partner with management on process improvements and risk mitigation strategies
- Support data privacy, cybersecurity, vulnerability, and penetration testing initiatives

We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.

- Bachelor’s degree in MIS, Computer Science, IT, or related STEM field
- 6–8+ years of experience in IT audit, cybersecurity, or IT risk (public accounting or large enterprise preferred)
- Strong knowledge of ITGCs, SOX, cybersecurity controls, and risk management frameworks
- Experience auditing infrastructure, networks, systems, and data centers
- Proven ability to analyze security incidents and communicate risk to stakeholders
- Strong analytical, problem-solving, and report-writing skills
- Excellent communication and stakeholder management abilities
Ability to manage multiple priorities in a fast-paced environment

- One or more of the following: CISA, CISSP, CISM, CIA, CCSP, CEH, CompTIA Security+, SSCP
- Experience with penetration testing and vulnerability assessments
- Exposure to global or multi-entity audit environments
- Fluency in Mandarin, Spanish, or a European language

Benefit packages for this role will start on the 1st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.