Information Technology Auditor Manager manages audit projects of information systems, platforms, and operating procedures following established policies and standards for efficiency, accuracy, and security. Coordinates resources and deliverables for annual and ongoing evaluations of IT infrastructure and establishes controls and audit procedures to identify areas of risk or non-compliance. Being an Information Technology Auditor Manager evaluates audit results and recommend improvements in current risk management controls, system implementation, and upgrade processes. Develops staff capabilities and competencies with training and coaching that reflect IT auditing best practices. Additionally, Information Technology Auditor Manager communicates overall regulatory, compliance, or operational readiness assessment results and follow-up action items to stakeholders. Coordinates external audit projects and initiatives. Requires a bachelor's degree. Typically reports to a director. The Information Technology Auditor Manager manages subordinate staff in the day-to-day performance of their jobs. True first level manager. Ensures that project/department milestones/goals are met and adhering to approved budgets. Has full authority for personnel actions. To be an Information Technology Auditor Manager typically requires 5 years experience in the related area as an individual contributor. 1 - 3 years supervisory experience may be required. Extensive knowledge of the function and department processes. (Copyright 2024 Salary.com)
Description
In the spirit of our Company’s mission, values and culture, the duties listed below serve as illustrations of the various types of work that may be performed by our IT Manager. We also expect our IT Manager to carry out other responsibilities that are similar, related or a logical assignment to this job class.
Manages and coordinates the Company’s cyber security programs and monitors users’ compliance with Company Cyber Security policies and procedures; collaborates closely with the Compliance Team, and CTO on confidentiality, integrity, and availability strategies; provides oversight for security governance and risk management, including risk assessments, vulnerability management, and incident response planning; manages and monitors the incident response plan, including detection, containment, mitigation, and recovery strategies; coordinates and oversees internal and external security audits, assessments, and penetration testing activities; establishes and maintains information security policies, standards, and procedures in compliance with relevant industry regulations (e.g., NY-DFS Part 500, GDPR, PCI DSS, state Insurance Data Security laws) and best practices; evaluates and implements security technologies and solutions to protect the organization's assets; evaluates and manages security risks associated with third-party vendors and service providers; provides regular updates and reports to senior leadership and stakeholders on the state of information security within the organization.
Ensures exceptional uptime and performance of the Company’s information systems network, servers, network-attached computers, IP based multi-site telephone network and other applicable technologies. Manages, maintains, configures, organizes, monitors and/or regularly analyzes network servers/server back-ups and network infrastructure, including switches, routers and backgrounds, as well as network-attached computers’ behavior. Manages, maintains and analyzes Company’s IP-based, multi-site telephone network and associated PRIs and circuits and other Company technologies, including wireless telephones. As necessary, efficiently and effectively troubleshoots, identifies and resolves root problems and, when applicable, works with vendors, application developers, system engineers and other technology groups to effectively resolve issues.
Coordinates and maintains security of Systems network/server, hardware and software, telephone equipment, as well as general office security. Works closely with Security vendors to meet or exceed Company’s security requirements. Successfully integrates, maintains, monitors and enhances anti-virus, anti-spam and anti-spyware solutions. Manages and maintains Company inventory of IP-based network telephones, desktop and laptop computers and other assigned items.
Within pre-approved budget and timeframes, identifies need for, acquires, installs and/or upgrades appropriate network, server and/or computer components and software, including security software. Develops and maintains custom desktop imaging and software packages.
Accurately, thoroughly, thoughtfully, and clearly develops, documents, maintains and updates policies, processes and procedures within areas of responsibility, ensuring compliance with Governmental regulations and Company, Carrier and/or Re-insurer standards and/or requirements.
Troubleshoots and resolves team members’ technical issues and effectively trains team members’ on Computer, telephone and/or other technology applications and/or software, etc., as needed. When requested, advises senior management to ensure Company’s Information Systems current and future needs are anticipated, met and exceeded.
Actively contributes as a member of the Cabrillo Coastal Team by providing assistance and support to assigned team members.
Dynamically enhances Company’s success by taking advantage of learning and development opportunities and personally integrating positive actions to improve individual performance.
Coordinates, oversees, participates in and/or carries out “special” independent and/or group projects, as requested.
Requirements
Qualities: Trouble shooter/Problem Solver; Quality- Oriented; Self-Starter; Team Player; Multi-Tasker; Adaptability; Strong Work Ethic; Positive “Can Do” Attitude; Collaborator; Service-Oriented.
Strong skill sets in the following areas: Complex and technical problem analyses/solving; complex and technical information analyses; troubleshooting advanced PC/network issues; project management; handling multiple priorities simultaneously; organization; time management/working under tight deadlines; active listening; oral and written communication; interpersonal communication; developing clear, thorough written documentation of technical policies, processes and procedures; effectively teaching a non-technical person how to appropriately and efficiently navigate and work with job-dependent technologies, as necessary; demonstrating strong leadership attributes.
Strong knowledge of: Microsoft Windows Server environment; Windows OS; wireless technology; VPN, MS Office and hard disk imaging systems; enterprise wide Anti-Virus/Anti-Spam/Anti-Spyware solutions; active directory and group policy deployments; hosted exchange set-up and troubleshooting; routing concepts and network design/troubleshooting; border/edge security, such as firewalls and VPN; storage systems, including SAN, NAS and various RAID arrays; backup and recovery strategies.
Licenses/Certification: A Certified. MCSA/MCSE/Security certifications highly desirable.
Education & Experience: Associate’s or Bachelor’s degree in Computer Technology, MIS or Computer Science and six or more years of information technology experience or an equivalent combination of education and experience. Significant Experience supporting a 24/7 environment is highly desirable. Basic AS/400 experience desirable.
Clear All
0 Information Technology Auditor Manager jobs found in Gainesville, FL area