Information Technology Manager

IT Manager and Internal Auditor

Key Responsibilities

IT Management Responsibilities:

1. IT Infrastructure Management:

• Oversee the organization’s IT infrastructure, including servers, networks, and systems.
• Ensure the availability, reliability, and scalability of IT services to support business operations.
• Manage IT budgets and procurement of hardware/software to ensure cost-effective solutions.
• Ensure systems are protected against unauthorized access, data breaches, and cyber threats.

1. Systems Administration & Maintenance:

• Supervise the daily operations and maintenance of internal IT systems, including hardware, software, and network resources.
• Manage IT support teams and ensure timely resolution of user issues.
• Oversee disaster recovery and business continuity planning.

1. Cybersecurity:

• Develop and implement cybersecurity policies to safeguard company assets.
• Regularly assess and test security measures, and recommend improvements.
• Perform vulnerability assessments and manage security incident response.

1. Technology Strategy:

• Collaborate with senior management to define the company's technology strategy and alignment with business goals.
• Lead the implementation of new IT initiatives and projects.
• Ensure proper integration of new technologies to improve business processes.

Internal Audit Responsibilities:

1. Audit Planning & Execution:

• Develop, implement, and execute the annual internal audit plan for IT systems, processes, and controls.
• Conduct audits on IT operations, financial systems, data management, and regulatory compliance.
• Evaluate the effectiveness of internal controls, risk management, and governance processes.

1. Risk Management:

• Identify and assess key risks related to IT infrastructure, data security, and system access.
• Recommend risk mitigation measures to improve operational efficiency and reduce exposure to risks.

1. Compliance and Regulatory Audits:

• Ensure IT systems comply with relevant laws, regulations, and standards (e.g., GDPR, HIPAA, SOX).
• Perform internal audits to assess compliance with internal policies and external regulatory requirements.
• Collaborate with external auditors for periodic audits and assessments.

1. Reporting and Documentation:

• Prepare detailed audit reports and communicate audit findings to senior management.
• Track and follow up on audit recommendations and corrective actions.
• Maintain clear, accurate, and well-organized audit records and documentation.

1. Continuous Improvement:

• Identify areas for improvement in IT controls, processes, and systems based on audit findings.
• Recommend process improvements to ensure that the organization is continually enhancing its internal controls and cybersecurity measures.

Qualifications

• Education:

• Bachelor’s degree in Computer Science, Information Systems, Accounting, Finance, or related field.
• Professional certifications such as 

  CISA (Certified Information Systems Auditor)

  , 

  CISM (Certified Information Security Manager)

  , 

  CISSP (Certified Information Systems Security Professional)

  , or 

  CIA (Certified Internal Auditor)

   are highly desirable.

• Experience:

• 5+ years of experience in IT management, including infrastructure management, cybersecurity, and system administration.
• 3+ years of experience in internal auditing, particularly in auditing IT systems and processes.
• Experience with auditing frameworks (e.g., COBIT, ITIL, NIST) and IT governance best practices.

• Skills:

• Strong knowledge of IT infrastructure, cloud solutions, databases, and network security.
• Proficiency in conducting risk assessments, compliance audits, and security audits.
• Excellent communication skills to present findings to senior management.
• Ability to handle multiple projects and priorities with attention to detail.
• Clearly layout and enforce materials and processes as per new age relevant IT control and risk practices within the company and team

Additional Skills (Preferred):

• Knowledge of ERP systems and IT operations in a corporate environment.
• Familiarity with privacy regulations (e.g., GDPR, CCPA) and cybersecurity standards (e.g., ISO 27001, NIST).
• Strong analytical skills, problem-solving abilities, and a proactive approach to technology challenges.

Personal Attributes:

• Strong organizational skills and attention to detail.
• Ability to think critically and strategically.
• Excellent problem-solving and decision-making skills.
• Strong interpersonal skills, with the ability to interact with both technical and non-technical stakeholders.