Cybersecurity IT Audit Manager

Templates Leadership User Story Peer Review Coordinating Communication Data Analysis Presentations Cyber Security Agile Auditing Professionalism Risk Mitigation Business Process Cyber Operations Agile Methodology Internal Auditing Solutions Focused Audit Engagements Business Objectives Audit Working Papers Strategic Objectives Artificial Intelligence Business Risk Management Scrum (Software Development) Control Deficiency Management, CBRE's Internal Audit (IA) is an independent, solution-focused business partner that provides insight to protect CBRE's brand and drive positive change. IA provides objective assurance and guidance to help CBRE leaders across our global enterprise identify, communicate and mitigate risk exposure that could threaten our company's ability to achieve strategic objectives. In short-this team helps CBRE reach business and functional goals by identifying opportunities for improvement.

IA is an early adopter of agile auditing and utilizes agile to serve our clients in the most efficient/effective manner possible. The Internal Audit Manager will be an engaged scrum team member who leads audit engagements on CBRE's Enterprise Risks.

This role will have the primary responsibilities of understanding business processes, assessing risks to business objectives, evaluating control effectiveness and delivering insights to stakeholders and senior leadership. The IT Audit Manager will possess operational internal audit experience, an interest in cybersecurity, data analytics, Artificial Intelligence, strong communication skills and advanced critical thinking.

What You'll Do:

The Cybersecurity IT Audit Manager will lead audit and project work to evaluate key risks and the adequacy of controls within CBRE's global business units and key business processes. Core responsibilities for this position include, but are not limited to:

• Contributing to the development of an audit approach and testing strategy for assigned audits to ensure key business risks and controls are evaluated.
• Drafting, coordinating and participating in the completion of audit procedures (i.e., user stories).
• Communicating audit findings to the audit team and stakeholders.
• Providing peer reviews of workpaper documentation to ensure the retained documentation supports the audit work performed.
• Completing and delivering projects and related deliverables on time, with exceptional quality and within budget.
• Performing testing verifying the effectiveness of established processes and procedures; confirming audit findings/observations identified through detailed testing.

Having professionalism and maturity to make oral and written presentations to key stakeholders throughout, and at the conclusion of, audit projects by discussing process and control deficiencies and recommending corrective actions and other suggestions to improve operational controls, mitigate risk, improve efficiencies or reduce costs:

• Preparing draft reports for review and ensuring audit comments are agreed, clear, concise and focused on the root cause of the issue and intended outcome
• Working as a global resource and participating in audit assignments in any location, as necessary
• Providing input into department initiatives (e.g., templates, audit manual and methodologies, etc.), as necessary
• Interpreting policies and procedures and applying professional auditing principles and standards to test and evaluate IT and Cybersecurity operations and systems. Designing audit procedures that adequately address risk and compliance with Company standards and relevant regulations.

Related Jobs Cybersecurity IT Audit Manager CBRE Richardson, TXOn-Site Auditing Templates Leadership User Story Peer Review Coordinating Communication Data Analysis Presentations Cyber Security Agile Auditing Professionalism Risk Mitigation Business Process Cyber Operations Agile Methodology Internal Auditing Solutions Focused Audit Engagements Business Objectives Audit Working Papers Strategic Objectives Artificial Intelligence Business Risk Management Scrum (Software Development) Control Deficiency Management +0 Cybersecurity Operations Manager Keurig Dr Pepper Frisco, TXOn-Site DevOps Triage Firewall CyberArk

Operations Leadership Management Innovation Coordinating Communication Investigation ISO/IEC 27001 Cyber Security Data Pipelines Email Security Azure Sentinel Business Acumen Authentications Problem Solving English Language Computer Science Security Systems Cyber Operations Operating Systems Agile Methodology Security Policies Incident Response Content Filtering Windows PowerShell Root Cause Analysis GIAC Certifications Time Off Management Computer Engineering Notification Systems Regulatory Compliance Cloud-Native Computing MITRE ATT&CK Framework Artificial Intelligence Cyber Incident Response Exploitation Techniques Certified Ethical Hacker Incident Command Systems Perl (Programming Language) Python (Programming Language) GIAC Certified Incident Handler Intrusion Detection And Prevention Sarbanes-Oxley Act (SOX) Compliance NextGen Enterprise Practice Management General Data Protection Regulation (GDPR) GIAC Certified Enterprise Defender (GCED) Offensive Security Certified Professional Security Information And Event Management (SIEM) Certified Information Systems Security Professional Health Insurance Portability And Accountability Act (HIPAA) Compliance +0, DevOps Budgeting Operations Leadership Management Automation Innovation Middleware SAFe Agile Investments Proofreading Communication Data Analysis Microservices Collaboration Security Risk Computer Science Product Delivery Agile Methodology Rapid Prototyping Influencing Skills Financial Modeling Database Management Time Off Management Technology Solutions Cloud Infrastructure Computer Engineering Business Requirements Emerging Technologies Solution Architecture Waterfall Methodology Cost Benefit Analysis Technology Strategies Technology Life Cycle Information Technology Electrical Engineering Operational Excellence API System Integration Artificial Intelligence Enterprise Architecture Application Development Conceptual Architecture Information Architecture Aspect-Oriented Programming Software As A Service (SaaS) Platform As A Service (PaaS) Service-Oriented Architecture Systems Development Life Cycle