This Job Vacancy has Expired!

Senior Manager, IT Audit

Posted on Apr 5, 2021 by Xerox

Myrtle Point, OR 97458
Retail Trade
Immediate Start
Annual Salary

Xerox (NYSE: XRX) makes every day work better. We are a workplace technology company, building and integrating software and hardware for enterprises large and small. As customers seek to manage information across digital and physical platforms, Xerox delivers a seamless, secure and sustainable experience. Whether inventing the copier, the ethernet, the Laser printer or more, Xerox has long defined the modern work experience. Learn more at and explore our commitment to diversity and inclusion.

As an Internal Audit (IA) Senior Manager, IT Audit, you will be reporting directly to Chief Audit Executive. This role would require developing and implementing strategic and operational plans related to the implementation of Xerox's Internal Audit's vision, mission, and overall goals and objectives. You will be required to understand and apply the IIA's International Standards for the Professional Practice of Internal Auditing, COSO 2013, etc. This position involves U.S. Domestic and International travel (10% to 25% annually).

XIA Methodology

Be able to learn and follow the structured approach followed by the broader Internal Audit Group (risk assessment, engagement planning, execution, reporting, issue follow-up and closure).

Risk Assessment

Act as an active team member in identifying and collecting data (quantitative and qualitative) in audit engagement planning and scoping through support of data analytics in identifying high-risk and high impact areas.

Audit Engagement and Scoping Support

Through collaboration with IA team and business owners, execute and maintain the data analytics framework targeting anomalies, fraud, errors, and other risks through the following: Gather and analyze data in support of Internal Audit projects, scrub or reconcile data to ensure accuracy of reporting, quickly and accurately deliver applications and analysis constantly exceeding requester expectations (within internal audit

Communicating Progress and Results

Effectively communicate with audit and management to provide updates and participate in project meetings to represent IA and share IA point of view on risks and control. In addition, work with teams to document analysis performed by the Data Analytics team, and results. Also, be able to develop Analytics visualizations to support audits and conclusions
Perform other related duties as assigned including special projects undertaken at the request of senior management
Grow organizational IT audit practices through mentoring team members and driving modern analytics processes
Ability to manage and prioritize multiple engagements at once

Risk and Control Expertise

Be able to learn the risk, control, and governance framework of the Xerox

IT Risks

Reasonable understanding of Xerox's IT risks and their mitigation

Machine Learning -

Interest in utilizing machine learning methods where appropriate to identify anomalies

Project Management

Excellent Project Management skills in relation to IT projects and defining the relevant compliance requirements

Adhering to Compliance

Monitor third-party adherence to IT compliance requirements and address instances of noncompliance including obtaining proof of required industry standard certification or report: eg: ISO, Service Organization Control Reports [SOCR], PCI, GDPR, CCPA, DSS
Track and report on metrics and activities involving IT risk, security and compliance activities, inclusive of monitoring KRIs and KPIs

Additional Desired Skills:

Prior experience working in audit
Cyber, data privacy and third-party risk management experience is a plus
Understanding of relevant legal, regulatory and privacy requirements
Ability to see a project through to completion and take ownership
Analytical Mindset with creative and innovative problem-solving skills
Knowledge of SOX-IT General Controls, ISO/IEC 27001, ITIL. COBIT, and NIST
Ability to adapt to change and embrace ambiguity
Proficient with Microsoft Office suite


Bachelor of Science required in a technical field
Preferred certifications: CRISC, CISA, CISM, CISSP, QSA, ISA, IT-GRC, FAIR (quantitative risk analysis)
Min: Ten years of experience

Reference: 1152697174

Set up alerts to get notified of new vacancies.