Job Description
As an IT Internal Auditor at Fortune Brands Innovations, you will play a key role in evaluating and improving the company’s internal processes, financial systems, cybersecurity, and IT compliance with industry regulations. This role will be reporting to the IT Audit Director and will be responsible for executing IT audits, analyzing data, and preparing comprehensive reports for management and stakeholders using the data analysis in the audit processes.
The ideal candidate will be an analytical thinker who loves data, has a Bachelor’s Degree in Information Technology or similar field, have a CISA, CISSP, CISM, CRISC, or other relevant certifications, has 3+ years of experience in IT Auditing, Cybersecurity, and Data Analytics, and previous experience using an Enterprise Resource Planning (ERP) system.
Location: This role is eligible for a hybrid schedule based in one of our main offices located in Deerfield, IL (preferred), North Olmsted, OH, Maumee, OH, or Oak Creek, WI. We anticipate up to 30% travel. Mainly North America, but some international travel may be needed.
Salary: $75,000 - $90,000/year plus annual bonus program and benefits, which begin on day one of employment
What you will be doing:
- Develop a deep understanding of ERP applications and processes by leveraging existing system documentation, interviewing key contacts and/ or assessing business processes, architecture, and dataflows to scope audit projects.
- Support internal audit engagements by performing assessments around ERP application controls.
- Coordinating the execution of ITGC SOX scoping, control testing, and reporting to management on a timely basis.
- Lead IT audits with an outsource auditors’ team and ensure the timely completion of audit work papers, discuss findings with management, determine audit conclusions, and align management action plans.
- Work with the financial audit team on integrated audits, determining key IT risks and developing work programs to test the adequacy of controls.
- Assist in assessing the application environment for critical cybersecurity vulnerabilities and control gaps, and support management’s remediation actions.
- Advance the maturation of the department’s data analytics initiatives which may include the coordination of development work/coding, automation and visualizations.
- Have the capability to analyze financial and operational data to identify trends, anomalies, and potential risks.
- Under the guidance of the IT Audit Director, clearly communicate the schedule, timelines and expectations to ensure the completion of the audit plan and data analytics projects.
- Identifying opportunities for innovative analytics applications like RPA, ML, and AI in risk assurance.
- Ensure audits are conducted per industry standards and best practices (NIST, PIP, CII, PMP)
- Maintain accurate and organized audit documentation, workpapers, and evidence.
- Monitor and track the implementation of audit recommendations to ensure compliance
- Prepare detailed audit reports that communicate findings, recommendations, and action plans to senior management via written reports and/or presentations
- Actively contribute to the development of internal audit methodologies and tools.
Qualifications
- Bachelor’s Degree in Information Technology or a similar field
- 3+ years of IT Audit, Cybersecurity, and data analytics experience
- CISA, CISSP, CISM, CRISC, or any other relevant certification
- Strong knowledge of auditing standards, SOX, ITGC, risk management, and internal control frameworks (i.e., COSO)
- Experience or certifications in Microsoft Excel & data visualization tools (Tableau, Power BI)
- Previous experience with ERPs (SAP, Oracle Cloud, Peoplesoft, or any other ERP)
- Analytical skills and ability to assess business processes, risks, and controls.
- Detail-oriented, analytical mindset, and strong problem-solving abilities
- Strong communication and interpersonal skills
- Ability to work independently and manage multiple tasks simultaneously
Nice to Have:
- Experience using Snowflake and CAATS to perform data analysis (SQL Server, SAS)
- Knowledge of IT & Cyber industry-specific regulations and compliance requirements
- Prior experience with the Big 4 (Deloitte, Ernst & Young, KPMG, or PricewaterhouseCoopers)
- Experience in storytelling using data visualization tools
- Experience in the AuditBoard tool