Information Technology Director, Global Risk Management

Full Time Job
Information Technology Director, Global Risk Management
Job Description:

Job Title: Information Technology Director, Global Risk Management

A little bit about our team:

The Warner Music Group Internal Audit vision is to provide high quality assurance and advisory services in a dynamic, innovative, and impactful way. Our work includes SOX, operational audits, and proactive risk management for the business. The Internal Audit department partners with the business to focus on the most important risks and issues facing the organization and delivers results that will make the biggest positive impact. We strive to be valuable business advisors that provide meaningful insights and solutions, not just information and recommendations. We continuously look for ways to improve our audit and risk management processes and leverage technology to maximize our impact. Our success is measured by the amount of internal control improvement, risk mitigation and overall positive change that we drive across the organization.

Our department has two pillars: A Global Risk Management pillar, and a traditional audit and SOX pillar. Our work within the Global Risk Management pillar includes risk assessment procedures, assisting in the development of policies and guidance around key risk areas, training and changing how the organization interacts with risk, and review / audit of key risk projects within the organization (e.g. system implementation, process transformation, information security, acquisitions, etc.).

Why this could be your next big break:

Due to the expanded scope and remit in Internal Audit's oversight, specifically the creation of a Global Risk Management function, we are seeking a dynamic and agile Global Risk Management IT Director to facilitate the growth of our services. In this role, you will help drive the evolution of a new Global Risk Management function within our organization. You will be on the ground floor of helping create meaningful pragmatic guidance for our organization to reduce risk, and drive informed executive decision making. You will also guide our internal and co-source teams in providing advisory review services that evaluate significant and transformational projects to mitigate risk and improve controls, operations, and compliance across our global organization. Your key oversight areas will include system implementation/transformation, cyber security, and information technology risk management. The Global Risk Management IT Director will report to the VP of Global Risk Management at WMG's New York headquarters and play a key role in developing the global risk management function, conducting risk assessments, and supporting the delivery and execution of projects on a dynamic plan. This role requires a high caliber individual with extensive enterprise risk management, risk assessment, and IT audit experience in companies of similar size and complexity. The ideal candidate will possess excellent interpersonal skills, a strong work ethic, and the ability to influence decision making at a senior level.

Here you'll get to:
• Contribute to the strategy, implementation, and evolution of a centralized global risk management process;
• Drive education and awareness of risk across the organization through periodic communication and training;
• Communicate and inform senior executive management of key risks periodically, as identified through risk assessment procedures;
• Collaborate with the business on pragmatic policy and standard development for key risk areas;
• Guide the business through the application of system implementation, cyber security, and other technology related policy and requirements;
• Drive the dynamic Global Risk Management plan, including scheduling, coordinating resources, scoping, and providing oversight from planning through reporting;
• Update the schedule and shift resources as necessary based on changes in priority or senior leadership requests;
• Establish the scope, objectives, and approach for reviews using a risk-based methodology that achieves timely and high-quality results and deliverables;
• Review workpapers, including planning documents and reports, to ensure proper and clear identification of risks, and corresponding issues / gap assessments;
• Communicate findings timely, and collaborate with process owners to develop creative, yet practical, action plans;
• Mange the follow-up and reporting of findings until they are remediated;
• Identify themes, trends, and emerging risks for escalation and communication to executive leadership;
• Manage team development, training, and career planning;
• Act as a change agent who employs accountability, collaboration and trust while fostering team work and execution; and
• Oversee and lead special projects and other tasks as assigned by the Chief Audit Executive or VP of Global Risk Management.

Rockstar candidates will be able to:
• Demonstrate a proficient understanding of enterprise risk management, risk assessment, ICFR, GAAP, COSO, and leading industry / business practices;
• Demonstrate excellent interpersonal skills (including listening, verbal, written, and presentation) with the ability to communicate effectively within various levels of the company and executive leadership;
• Communicate complex technology and information security concepts to business and operational leads / executives in a way that is easily understood;
• Deliver exceptional customer service, including the ability to manage potentially contentious interactions and the ability to strike a balance between oversight and getting buy-in / partnering with the business;
• Display analytical and problem-solving skills, with the ability to resolve complex issues;
• Demonstrate attention to detail, strong organizational skills, tolerance for uncertainty, and ability to be agile and adaptable;
• Exhibit the ability to thrive in a creative, dynamic, fast-paced environment and manage multiple projects and resources effectively, while driving and assimilating change;
• Prove your ability to manage teams in a matrixed reporting environment, shifting between the role of an individual contributor, project manager, and thought leader;
• Show your ability to influence, lead and motivate team members;
• Display a high standard of ethics and professionalism; and
• Travel domestically and internationally as needed.

It would be music to our ears if you also had:
• Bachelor or advanced degree in computer science, accounting, or related field;
• 8+ years of experience overall in a combination of public accounting, internal audit, or risk advisory role within a multinational organization, with a focus on IT audit;
• Professional certification (CISA, CIA, CPA and/or CA);
• Global / Enterprise Risk Management experience, specifically with the implementation of a GRM / ERM function;
• Significant program / project management experience;
• Experience with SAP, HFM, Oracle Financials, Microsoft Office applications, or Tableau and other competencies such as cloud computing, data analytics, robotic process automation (RPA), and fraud investigations;
• Global / multinational system implementation or implementation audit experience;
• Cyber security or information security audit experience;
• Experience in implementing and evaluating NIST and ISO framework compliance;
• A minimum of 5 years of experience coaching and developing team members; and
• Media and entertain

[more...]