Job Description

Position Summary
The Information Technology (IT) Audit Manager leads risk-based assurance and advisory engagements focused on information technology. The manager plans, executes, and reports on IT assurance and advisory engagements in conformance with the IIA Global Internal Audit Standards and UTEP’s internal audit methodology, with emphasis on governance, risk management, and internal control effectiveness.

Plan, manage, and deliver risk-based IT audit and advisory engagements in accordance with the IIA Global Internal Audit Standards and UTEP’s internal audit methodology, including the development of engagement objectives, scope, evaluation criteria, and detailed audit programs.

Demonstrate ethics and professionalism by adhering to the Internal Global Audit Standards principles of Integrity, objectivity, competency, due professional care and confidentiality. Ensure effective engagement supervision, professional skepticism, and high quality documentation that enables efficient review and approval by the Chief Audit Executive

Conduct relevant interviews with stakeholders and prepare the Annual Information Technology Risk Assessment and Audit Plan.

Apply extensive knowledge of enterprise IT environments, industry best practices, and relevant regulatory requirements, including the Texas Administrative Code (TAC) §202 Security Control Standards Catalog, to assess governance, risk management, and internal control effectiveness.

Analyze complex systems, processes, and audit evidence using sound professional judgment, critical thinking, and analytical skills to identify risks, root causes, and control deficiencies, and to develop practical, value-added recommendations.

Utilize audit management systems and data analytics software tools to improve audit planning, execution, efficiency, and insight, and to enhance coverage of key IT risks.

Draft clear, concise, and well-organized audit reports that effectively communicate audit scope, observations, risk implications, and recommendations to management and executive leadership.

Develop and deliver effective presentations that clearly explain audit results, key risks, and recommended actions to executive management, governance committees, and other stakeholders.

Build and maintain productive working relationships by collaborating with management and cross-functional teams, influencing outcomes, and supporting corrective action efforts to strengthen internal controls.

Manage multiple IT audit projects concurrently by independently prioritizing work, allocating resources, monitoring budgets and schedules, and ensuring timely completion of engagements.

Supervise, mentor, and evaluate audit staff, providing guidance and feedback as needed, and review workpapers to ensure quality, completeness, and conformance with professional standards.

Drive continuous improvement and innovation within IT audit and advisory practices by identifying opportunities to enhance methodologies, processes, and tools.

Serve as a strategic advisor on IT governance matters and participate in major system implementations, technology initiatives, and institutional projects as requested.

Coordinate management responses to audit findings, track remediation efforts, and perform follow-up procedures to verify that corrective actions are implemented effectively and in a timely manner.

Keep the Chief Audit Executive informed of engagement progress, emerging risks, significant issues, and matters requiring attention or escalation.

Knowledge of all Microsoft Office software and able to learn and use institutional software systems.

Complies with all State and University policies.

Other duties may be assigned.



Supervisory Responsibilities Carries out supervisory responsibilities in accordance with the organization's objectives, policies and applicable laws.

Qualifications
To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill, and/or ability required.

Required Qualifications:

Minimum Education: Bachelor’s degree in accounting, computer science, information systems, or a business-related field.

and

Minimum Experience: Minimum of seven (7) years of IT-related experience, including at least five (5) years of IT auditing experience and three (3) years of supervisory or project leadership experience.

CIA certification or CPA license required; additional certifications preferred including CISA, CISM, or CISSP.

Ability to create, modify, and evaluate SQL queries and use database and analytics tools such as Power BI; experience with PeopleSoft and/or Banner systems