IT Internal Audit Manager

Description

TITLE: IT Internal Audit Manager

DEPARTMENT: Internal Audit 

JOB SUMMARY:

The IT Internal Audit Manager is responsible for professional IT auditing work to aid management in evaluating whether internal controls are adequately designed, operating effectively, and complying with relevant regulatory guidelines. The IT Internal Audit Manager is responsible for supervising a team of IT internal auditor(s) and may serve as the lead auditor for more complex IT-related audits and/or projects. This role assists in the completion and maintenance of the audit schedule and Sarbanes Oxley (SOX) internal control testing for QCR Holdings, Inc. (QCRH) and its subsidiaries. This role plans assigned IT internal audits and SOX IT-related testing as well as reviews internal auditors’ workpapers. Other responsibilities include collaborating with audit management, staff and external auditors to establish timely completion of internal and external audits as well as SOX testing.

ESSENTIAL FUNCTIONS:

• Lead the delivery and oversight of IT internal audit services and/or SOX IT-related internal control testing; Manages the IT internal auditor(s) and may take the lead in personally performing more complex IT audits and/or projects.
• Plan, assist and/or execute IT audit and IT internal control testing that is performed by either the in-house IA department or a sourced IT audit firm.
• Serve as a subject matter expert and resource on IT-related issues for others within the IA department.
• Research technology, industry trends and professional standards as it relates to IT controls and the IT audit profession; Incorporates best practices at QCRH and its subsidiaries.
• Develop and maintain the annual audit schedule based on the annual risk assessment. Participate in the risk assessment process by providing input to the IT-related audits and/or projects.
• Create and manage assigned IT internal audits and SOX IT-related testing plans to verify completion of the annual internal audit and SOX testing schedule. 
• Develop testing plans to evaluate established internal controls, policies, and procedures (both written and practiced) for adequate asset safeguards, control of risks, and compliance.
• Create request memos for planned IT internal audits and SOX IT-related testing. 
• Review IT internal auditor’s work and completed workplan and provide constructive feedback. 
• Review auditor’s cleared comments and confirm draft report is ready for audit management’s review.
• Participate in the administration of the SOX tracking spreadsheet to make sure sample testing sizes are adequate based on control frequency and number of deviations
• Perform functional IT-related audits, procedural reviews, and compliance testing as needed and prepare draft reports for review.
• Compile and analyze complex data and formulate conclusions by preparing workpapers and audit reports that detail findings and recommendations.
• Identify and complete non-standard procedures required to satisfy audit objectives based on fieldwork or issues identified in the course of reviews.
• Lead audit exit meetings with management.
• Assist Internal Audit management with handling external audit requests and serving as another point of contact for the external auditors. 
• Maintain and enhance technical and professional competence through continuing education.
• Safeguard sensitive data and resources and maintain strict confidentiality.
• Implement and help maintain audit software.
• Hire, develop, motivate, and train staff, including planning and delegating work assignments and projects. 
• Evaluate performance, administer touch points and deliver performance evaluations.
• Foster a positive work environment that encourages professional growth and development.
• Establish clear expectations and hold team members accountable to performance and behaviors aligned with our culture. 
• Understand and administer compensation based on pay for performance philosophy, including merit increases and variable pay.
• Participate in community engagement events. This can include professional, civic and community groups.
• Comply with all company or regulatory policies, procedures and requirements applicable to this position.
• Foster and preserve a culture of inclusion, innovation, collaboration, accountability, achievement and passion.
• Additional duties and responsibilities may be required to support the company’s mission, vision and values. 

QUALIFICATIONS:

• Bachelor’s degree in management information systems, computer information systems, accounting, or business.
• Banking experience desired but not required.
• A minimum of 7 years of professional experience working in the areas of IT audit, IT controls assessment and/or evaluation of SOX internal controls. Experience within a publicly traded company’s IT and/or Internal Audit function, with a public accounting firm, and/or External IT Audit Consulting Firm engaged in providing IT-related services to financial institutions or other financial service companies. 
• CISA, CISSP, CIA, CPA, or any other similar type of IT-related professional designation/certification or actively pursuing certification.
• A minimum of one year of supervisory or management experience.
• Critical thinking and problem solving; able to solve/troubleshoot problems and offer practical, alternative solutions. 
• Strong technical skills and proficient knowledge of IT general and application controls as well as SOX and IT regulatory requirements.
• Strong written and verbal communication skills.

WORKING CONDITIONS:

• Duties are performed in a professional office environment.
• Travel to all QCRH locations as needed.
• This role is ideally based in person within one of our markets; however, remote work may be available for the right candidate. 

SALARY & BENEFITS:

The minimum salary range for this position is $115,000.00 annually. The actual starting salary will be based on qualifications and business needs and may vary, as permitted by applicable state law.

This position is a regular full-time position and individuals employed as regular full-time are eligible for the following benefits subject to the terms, limitations and conditions of each benefit plan: Health, Dental, Vision, Life Insurance, Disability Insurance, FSA, HSA, 401K, Employee Stock Purchase Plan, Paid Time Off, Paid Holidays and additional Voluntary Supplemental Insurance.

At QCR Holdings, Inc. we are committed to fostering and preserving a culture of inclusion and strongly believe that it's our differences - of all kinds - that make our company and our communities better and stronger.

QCR Holdings, Inc. is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, disability, age, sexual orientation, gender identity, national origin, veteran status, or other protected class status.

It is the policy of QCR Holdings, Inc. to comply with the Americans with Disabilities Act by providing reasonable accommodations to enable qualified individuals with disabilities to access the job application and interview process, to perform the essential functions of the job, and to receive equal access to other benefits and privileges of employment.