Internal Auditor Manager

Job Description

AVIVYS is a platform where talent meets opportunities to unlock their potential. A place to learn, upskill, showcase their talents, gain CV points & get hired while unlocking their true potential. This enables professionals to eventually get hired by their dream employers. AVIVYS believes that you can unlock your dreams with genuine efforts Opportunity to work with our esteemed client Finnish IT software and service company providing IT services and product engineering services We are seeking an experienced Internal Auditor Manager to lead and execute internal audits,with a strong focus on SOX compliance, IT General Controls (ITGC), Information Security, and Cloud Security audits. The ideal candidate will have over seven years of hands-on experience in evaluating risks, assessing controls, and ensuring compliance with regulatory standards. Key Responsibilities: 1. SOX Compliance & IT General Controls (ITGC) - Plan, execute, and manage SOX audits, including control design assessments, testing, and remediation tracking. - Evaluate IT General Controls (ITGC) related to financial reporting, including access controls, change management, and data integrity. - Collaborate with finance and IT teams to ensure compliance with SOX 404 requirements and other financial regulations. - Identify control deficiencies and recommend improvements to strengthen the control environment. 2. Information Security Audits - Conduct information security audits to assess compliance with ISO 27001, NIST, CIS benchmarks, and other security frameworks. - Evaluate the effectiveness of organizational security policies, procedures, and technical controls. - Identify vulnerabilities in IT systems and recommend security enhancements. - Perform risk assessments and ensure alignment with industry best practices. 3. Cloud Security Audits - Audit cloud-based infrastructure (AWS, Azure, and Google Cloud) to ensure compliance with security best practices. - Assess cloud service providers\u2019 controls and adherence to CSA (Cloud Security Alliance) guidelines. - Evaluate data privacy, encryption, identity & access management (IAM), and cloud governance frameworks. - Ensure cloud environments meet regulatory and internal security requirements. 4. Risk Management & Reporting - Prepare detailed audit reports with findings, risks, and actionable recommendations. - Present audit results to senior management and stakeholders. - Monitor remediation efforts and validate control improvements. Qualifications and Skills: - 5+ years of experience in internal audit, IT audit, or risk management, with a focus on SOX, ITGC, and security audits. - Strong knowledge of SOX compliance, IT General Controls, and financial reporting risks. - Experience auditing information security frameworks (ISO 27001, NIST, CIS benchmarks). - Familiarity with cloud security (AWS, Azure, GCP) and related compliance standards (CSA, SOC 2, etc.). - Preferred certifications: CISA (Certified Information Systems Auditor), CISSP, CIA, or equivalent. - CA (Chartered Accountant) qualification is a plus but not mandatory. - Strong analytical, communication, and project management skills.