AT&T Associate Director-IT Audit in El Segundo, California
Overall Purpose : Responsible for leading a team of assigned IT auditors to perform risk assurance and advisory engagements to analyze and assess the company's technological infrastructure to identify, report, recommend and validate audit corrective actions that enable processes and systems to run accurately and efficiently, while remaining secure and meeting compliance regulations.
Key Roles and Responsibilities : Leads team of IT auditors to perform technology risk assessments, identify related technical and technology- dependent controls, define assessment criteria, develop and executes technical test plans, identify and report deficiencies and recommendations, and perform follow-up on corrective actions, consistent with applicable professional standards required by the Audit Services Charter approved by the Board's Audit Committee. Has expert knowledge of IT governance and security frameworks (e.g., ITIL, NIST) and control frameworks (COBIT, COSO) and methodologies and may be an internally- recognized expert in specific technology platforms or domains including operating systems, databases, information security, public/private cloud, code development methodologies, technology governance, etc. Leads teams to utilize a data-first audit approach, technology audit tools, and Computer Assisted Auditing Techniques (CAAT) to perform advanced analysis of company technology environments. Identifies opportunities for data-driven technology risk insights, continuous auditing, and robotic process automation. Owns development of audit reports including t and presents results to Senior Management. Work product may be shared directly with the Audit Committee of the Board of Directors. May work in a limited role as an extension of the company's independent auditors and/or on highly sensitive independent projects. May participate in audits in high-risk areas such as joint ventures, partnerships, and subsidiaries. Performs all personnel management activities for subordinates including recruitment, training, performance evaluation and salary management; encourages professional development through job assignments and training. Influences decisions regarding the hiring, firing, disciplinary action, promotional activity, and pay decisions for subordinates. Job Contribution: Exercises judgment within broadly defined practices and policies in selecting methods, techniques and evaluation criterion for obtaining results for technology-based risks. Operates primarily as a team leader on an assignment basis but is also an individual contributor. Project execution is critical to meet risk coverage and project commitments approved by the Audit Committee of the Board of Directors. Provides leadership to less experienced and non-technical team members.
Education : Typically, a bachelors degree with information systems focus or equivalent combination of education and experience. CISA, CISM, CRISC, CISSP or other technology audit or advisory-related certifications required.
Experience : Typically requires 8-10 years of relevant experience.
Supervisory : Yes
We expect employees to be honest, trustworthy, and operate with integrity. Discrimination and all unlawful harassment (including sexual harassment) in employment is not tolerated. We encourage success based on our individual merits and abilities without regard to race, color, religion, national origin, gender, sexual orientation, gender identity, age, disability, marital status, citizenship status, military status, protected veteran status or employment status.