About the role

IT Internal Audit Assistant Manager focusing on evaluating IT security controls in business systems. Join a dynamic team aiming to strengthen IT security and governance risk/control environment.

Responsibilities

Responsible for performing IT audit assignments as part of integrated business audits, focusing on assessing IT security controls covering areas such as Application and Network Security, Technology Architecture, Third Party Risks, Resiliency Practices, Artificial Intelligence (AI)/Machine Learning (ML) technologies, among others.
Collaborate with business audit team to address technology risks relating to operational processes and controls.
Responsible for audit project management (budget, timelines) and as needed for assigned staff to ensure quality of their work when leading engagements.
Assist in planning and developing scope, audit program, and appropriate procedures for each audit in accordance with departmental guidelines, IIA Standards, and relevant laws and regulations.
Help lead or support audit team in kick-off and closing meetings, effectively communicate audit objectives, scope, findings, and recommendations to management.
Prepare crisp, concise audit reports for review by Portfolio Managers, Directors, and Chief Auditor.
Work with business stakeholders on findings follow-ups to ensure implementation of recommendations.
Participate in the continuous improvement of audit practices and tools, as well as department initiatives.
Foster risk and control awareness across the organization by working with management and other line of defense functions.
Be an advocate for application security within the organization and keep abreast of the latest security issues and technologies.

Post secondary in Information Systems, Computer Science, Software Engineering, or a related field is required
Minimum 3 years in IT auditing is required
Recognized professional designation (CISA, CISSP, CCSK, CCSP, CISM, PMP, etc.)
Experience in internal IT audit in a large public organization or external audit
Cybersecurity skills are required
Knowledge of Software Development Lifecycle processes is an asset.
Knowledge of best practices and strong security controls over cloud environments (AWS, Azure, GCP, etc.) is an asset
Strong analytical skills leading to accurate conclusions
Strong project management skills and solutions-driven
Versed in audit methodologies
Excellent written and communication skills
Experience using data analytics tools
Prior insurance industry experience is an asset.
For candidates located in Quebec, bilingualism is required considering the necessity to interact on a regular basis with English-speaking colleagues across the country.

A financial rewards program that recognizes your success
An industry leading Employee Share Purchase Plan; we match 50% of net shares purchased
An extensive flex pension and benefits package, with access to virtual healthcare
Flexible work arrangements
Possibility to purchase up to 5 extra days off per year
An annual wellness account that promotes an active and healthy lifestyle
Access to tools and resources to support physical and mental health, embracing change and connecting with colleagues
A dynamic workplace learning ecosystem complete with learning journeys, interactive online content, and inspiring programs
Inclusive employee-led networks to educate, inspire, amplify voices, build relationships and provide development opportunities
Inspiring leaders and colleagues who will lift you up and help you grow
A Community Impact program