Information Technology Director, Global Risk Management

Full Time Job
Information Technology Director, Global Risk Management
Job Description:

Job Title: Internal Audit – Information Technology Director, Global Risk Management

Why this could be your next big break:

Due to the expanded scope and remit in Internal Audit's oversight function, specifically the creation of a Global Risk Management function, we are seeking a dynamic and agile Global Risk Management IT Director to facilitate the evolution of our services. In this newly created role, you will help drive the creation, rollout, and evolution of a new Global Risk Management function within our organization. You will be on the ground floor of helping create meaningful pragmatic guidance for our organization to reduce risk. You will guide our internal and co-source teams in providing advisory review services that evaluate significant and transformational projects across the organization to mitigate risk, improve controls, operations, and compliance across our global organization. Your key oversight areas will include system implementation, cyber security, and information technology risk management. The Global Risk Management IT Director will report to the VP of Global Risk Management at WMG's New York headquarters and play a key role in developing the global risk management function, conducting risk assessments, and supporting the delivery and execution of projects on a dynamic plan. This role requires a high caliber individual with extensive enterprise risk management, risk assessment, and IT auditing experience in companies of similar size and complexity. The ideal candidate will possess excellent interpersonal skills, a strong work ethic, and the ability to influence decision making at a senior level.

Here you'll get to:
• Contribute in the strategy, design, implementation, and evolution of a centralized global risk management process;
• Collaborate with the business on pragmatic policy and standard development for key risk areas;
• Guide the business through the application of system implementation, cyber security, and other technology related policy and requirements;
• Drive education and awareness of risk across the organization through periodic communication and training;
• Communicate and inform senior executive management of key risks periodically, as identified through risk assessment procedures;
• Drive the dynamic Global Risk Management plan, including scheduling, coordinating resources, scoping, and providing oversight from planning through reporting;
• Update the schedule and shift resources as necessary based on changes in priority or senior leadership requests;
• Establish the scope, objectives, and approach for reviews using a risk-based methodology that achieves timely and high-quality results and deliverables;
• Supervise and oversee the timely execution of engagements from planning through reporting;
• Review workpapers, including planning documents and reports, to ensure clear identification of risks, and corresponding issues / gap assessments;
• Communicate findings timely, and collaborate with process owners to develop creative, yet practical, action plans;
• Mange the follow-up and reporting of findings until they are remediated;
• Identify themes, trends, and emerging risks for escalation and communication to executive leadership;
• Manage internal audit staff development, training, and career planning
• Act as a change agent who employs accountability, collaboration and trust while fostering team work and execution;
• Oversee and lead special projects and other tasks as assigned by the Chief Audit Executive or VP of Global Risk Management.

Rockstar candidates will be able to:
• Demonstrate a proficient understanding of enterprise risk management, risk assessment, ICFR, GAAP, COSO, and leading industry / business practices;
• Demonstrate excellent interpersonal skills, including listening, verbal, written, and presentation, with the ability to communicate effectively within various levels of the company and executive leadership;
• Communicate complex technology and information security concepts to business and operational leads / executives in a way that is easily understood;
• Deliver exceptional customer service, including the ability to manage potentially contentious interactions and the ability to strike a balance between oversight and getting buy-in / partnering with the business;
• Display strong analytical and problem-solving skills, with the ability to identify and resolve complex issues;
• Demonstrate attention to detail, strong organizational skills, tolerance for uncertainty, and ability to be agile and adaptable;
• Exhibit the ability to thrive in a creative, dynamic, fast-paced environment and manage multiple projects and resources effectively, while driving and assimilating change;
• Prove your ability to manage teams in a matrixed reporting environment, shifting between the role of an individual contributor, project manager, and thought leader;
• Show your ability to influence, lead and motivate team members;
• Display a high standard of ethics and professionalism; and
• Travel domestically and internationally up to 20%

It would be music to our ears if you also had:
• Bachelor or advanced degree in computer science, accounting, or related field;
• 8 years of experience overall in some combination of public accounting, internal audit, or risk advisory role within a multinational organization, with a focus on IT audit;
• Professional certification (CISA, CIA, CPA and/or CA)
• Global / Enterprise Risk Management experience, specifically with the implementation of a GRM / ERM function;
• Experience with SAP, HFM, Oracle Financials, Microsoft Office applications, or Tableau and other competencies such as cloud computing, data analytics, robotic process automation (RPA), and fraud investigations;
• Global / multinational system implementation or implementation audit experience;
• Cyber security or information security audit experience;
• Experience in implementing and evaluating NIST and ISO framework compliance;
• A minimu

[more...]