IT Audit Senior Manager

Endo Pharmaceuticals Malvern , PA 19355

Posted 2 months ago

Job Summary - a concise overview of the job

The IT Audit Senior Manager leads information technology (IT) audits, assessing the adequacy and effectiveness of controls over critical information systems throughout the Company. The Senior Manager, IT Audit will assess the effectiveness and efficiency of operations, reliability of financial reporting, appropriateness of risk management activities, cyber-resilience, and compliance with applicable laws and regulations. This person will be accountable for contributing to the direction and management of the operations, focus/priorities, and resources of the internal audit function to promote continuous improvement and development while providing assurance over the Company's most significant IT risks. The Senior Manager, IT Audit will identify and clearly define audit issues, root causes, recommend improved controls and processes, and ensure that corrective action plans are developed and implemented.

All incumbents are responsible for following applicable Division & Company policies and procedures.

Scope of Authority - span of control (work unit, site, department, division, etc.), monetary value of budget/spend authority ( capital, operating, etc.), P&L responsibility, etc.

Enterprise Wide - IT Focus

Key Accountabilities - key outcomes/deliverables, the major responsibilities, and % of time



% of Time


  • Identification, prioritization, and assessment of IT risks. Responsible for the IT annual audit plan (risk assessment, audit planning, audit execution, report writing, issue tracking, etc).

  • Utilize the COBIT and NIST frameworks to identify, prioritize, and assess IT risks. Maintain an ongoing risk assessment that feeds into audit planning and execution.

  • Develop, perform, and complete IT audits and business process review engagements. Present findings and recommend action plans to Management.

  • Develop and execute the annual testing approach to validate Management's internal control assessment process undertaken in accordance with Section 404 of the Sarbanes-Oxley Act. This includes managing internal and external resources, coordinating with external auditors, and being responsible for issue documentation and escalation. Responsible for performing or overseeing testing of SOX relevant automated controls and IT General Controls (ITGC's).

  • Provide IT thought leadership in IT process optimization.

  • Develop and execute IA department continuous improvement efforts, networking with other IT audit professionals outside of Endo on best practices, and recommend/develop/implement change efforts in the department.

  • Communicate IT audit results and issues to executive management, external auditors, and the Chief Audit Executive through written reports and discussions.





Education & Experience

Minimal acceptable level of education, work experience and certifications required for the job

Bachelor's Degree in business; IT concentration highly desirable.

Minimum of 8 years of experience with a minimum of 5 years performing IT audits for a public accounting/consulting firm or a well-regarded internal audit organization.

Certified Internal Auditor (CIA) or Certified Information Systems Auditor (CISA) is a plus.

Experience interacting with and presenting to senior executives.

Experience planning, designing, and executing audits and Sarbanes-Oxley related procedures.

Experience auditing cyber-security risk areas.

Experience with SAP.


Proficiency in a body of information required for the job

e.g. knowledge of FDA regulations, GMP/GLP/GCP, Lean Manufacturing, Six-Sigma, etc.

Extensive knowledge and experience in information systems, especially those related to financial reporting.

Sarbanes Oxley (SOX) Compliance proficiency (Internal Controls/COSO 13).

Strong technical knowledge of internal controls, business processes, NIST, and COBIT frameworks.

Access control software, network security architecture and administration.

IT Security policies and standards.

Cyber-security risk management concepts, frameworks, programs, and practices.

Knowledge and familiarity with data analytics procedures is a plus.




Often referred to as "competencies", leadership attributes, skills, abilities or behaviors that may be enterprise, functional or job specific e.g. coaching, negotiation, calibration, technical writing etc.

High level of ethics and integrity, with ability to be objective and independent.

Self-motivated, critical thinker, with proven track record of strong leadership and managerial skills.

Strong IT auditing expertise. Experience in developing audit procedures and executing/leading to address identified risks, and providing deliverables within the expected timeframe.

Desire and ability to roll up sleeves and both lead and execute

Effectively work with business management to plan, coordinate, and execute audit projects.

Highly developed and effective interpersonal skills for dealing with potentially sensitive and controversial issues; must have an ability to communicate, coordinate, and influence members of management at all levels.

Ability to build effective relationships with senior management, outside advisors, and internal stakeholders (including other compliance or risk groups).

A collaborative, team oriented leadership style.

Ability to synthesize detailed information into concise executive-level reports and analyses. The reports should identify significant and meaningful observations and recommending opportunities to enhance business results and internal controls.

Proficient with Enterprise Resource Planning Systems (ERP), especially SAP

Strong technology abilities including experience with Microsoft Excel and database applications.

Physical Requirements

Physical & mental requirements e.g. lift 40 pounds, walk across plant/warehouse, business travel (% of time), driving as part of work responsibilities, etc.

Up to 5% travel.

icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Experienced Senior Associate Risk Advisory Services


Posted 3 weeks ago

VIEW JOBS 9/28/2021 12:00:00 AM 2021-12-27T00:00 Job Summary BDO's Core Purpose is Helping People Thrive Every Day. Our Core Values reflect how we manage our work, our relationships and ourselves. As an employee of the firm, you will live true to our Core Values of people first, being exceptional every day in every way, embracing change, feeling empowered through knowledge and choosing accountability. Our Core Values are the standards by which we conduct ourselves day in and day out, both internally and externally. The Risk Advisory Services Experienced Senior Associate is responsible for providing risk consulting and issues resolution to clients in the areas of SOX, internal audit, business process improvement, information technology, and fraud investigations. In this role, the Risk Advisory Services Senior Associate will participate in all stages of an internal audit or consulting engagement and provide assistance with planning, field work, engagement wrap up and report composition, along with providing recommendations regarding client economic and legal risks. * Acts as primary contact for clients regarding basic questions and information * Conducts informational interviews and facilitates meetings with clients during engagement process * Obtains information, documents and data from clients to support the completion of analysis and research of client issues * Documents and analyzes the client's processes, risk and controls with guidance and direction from senior Risk Advisory Services professionals * Develops initial deliverables and/or solutions to client issues * Dynamically reassess risk and communicate with senior Risk Advisory Services professionals and/or client as necessary * Assists with the management of the engagement to ensure engagement metrics are achieved * Utilizes research tools, databases and trade publications to develop understanding of client's industry * Develops relationships with client personnel and management members * Prepares formal and informal presentations for client meetings * Partners with Risk Advisory Services leadership to complete research and draft proposals and reports, as necessary * Implements project plans * Maintains all documentation and work papers associated with client engagements * Conducts risk assessment of assigned department or functional area in established / required timeline while oversees staff * Establishes risk-based audit programs * Determines scope of review in conjunction with the Engagement Manager * Documents financial reporting cycles or internal audit area and identifies key controls * Assesses internal control design and operational effectiveness Conducts audit testing of specified area and identifies reportable issues and dimension of risk * Determines compliance with appropriate legislation and/or audit policies and procedures * Communicates findings to senior management and drafts comprehensive report of audited area * Other duties as required Supervisory Responsibilities: * Supervises the day-to-day workload of Risk Advisory Services Associates on assigned engagements and reviews work product * Ensures Risk Advisory Services Associates are trained on all relevant audit software and engagement processes and procedures * Delivers periodic performance feedback and completes performance evaluations for Risk Advisory Services Associates * Acts as mentor to Risk Advisory Services Associates, as appropriate Qualifications Education: * Bachelors degree in Accounting, Finance or other relevant field required Experience: * Three (3) to seven (7) years of financial experience within a public accounting firm or industry environment performing internal audit, consulting or risk services required * Two (2) or more years of prior supervisory experience preferred * Prior experience with internal controls including flowcharts, documentation and testing of controls required * Experience with Internal Audit and Sarbanes Oxley with a focus in entities wide risk assessment required License/Certifications: * CPA or CIA certification preferred Software: * Proficient in the use of Microsoft Office Suite, specifically Excel and Word * Prior experience with various assurance applications and research tools beneficial Other Knowledge, Skills & Abilities: * Solid understanding and experience planning and coordinating the stages to perform an audit * Knowledge of internal accounting controls, professional standards and regulations and systems * Strong verbal and written communication skills * Ability to adapt style and messaging to effectively communicate with professionals at all levels both within the client organization and the firm * Ability to successfully multi-task while working independently and within a group environment * Superior analytical and diagnostic skills * Capable of working in a demanding, deadline driven environment with a focus on details and accuracy * Ability to adapt to rapidly changing environments successfully * Solid organizational skills especially ability to meet project deadlines with a focus on details * Capable of effective managing a team of professionals and delegating work assignments as needed * Capacity to build and maintain strong relationships with client personnel * Ability to travel 25 to 50% of the time BDO Malvern PA

IT Audit Senior Manager

Endo Pharmaceuticals