Position Summary: Reporting to the Director, Internal Audit, the Manager, Information Technology Audit position will have responsibility for overseeing and supporting the execution of the Information Technology component of the annual Internal Audit plan in accordance with professional and operational best practices. Directly responsible for performing and leading the audit team in planning, conducting and reviewing internal audits to evaluate the confidentiality, integrity and availability of the organization’s IT infrastructure and systems, as well as leading and/or participating in consulting engagements. A collaborative and team player, this position requires strong communication and project management skills. As with all Great Canadian staff, Internal Auditors contribute to a safe and welcoming work environment for all employees.
Key Accountabilities:
• Coordinates the annual IT risk assessment elements for the annual risk-based internal audit plan compilation and provides support to the Director and VP Internal Audit in this regard.
• Conducts audits using current industry frameworks such as COSO and COBIT and in adherence with the IIA Professional Standards
• Responsible for conducting reviews in highly technical areas of current/emerging technologies. including cybersecurity, Internet, Intranet, ecommerce, distributed/cloud computing, social media, firewalls, Windows, UNIX and mainframe operation systems. This includes planning, fieldwork, recommendations, client interactions and report writing, both in performing and leading the audit team.
• Responsible for the planning, coordination and execution of technology-driven audits required to meet new Registrar standards for Internet Gaming (iGaming)
• Responsible for directly supervising the IT Auditor on assigned engagements.
• Assesses technology control elements to mitigate technology risks regarding the confidentiality, integrity, and availability of IT systems and infrastructure.
• Supports financial auditors, where required, on technical aspects of financial, operational and compliance audit engagements.
• Leads the IT General Controls documentation and testing work for assessments of financial and non-financial applications.
• Support the follow-up on open technology related audit issues and quarterly reporting to senior management and the audit committee in this regard.
• QA working papers prepared by other auditors to ensure they follow IIA standards.
• Assists the Director, and VP Internal Audit in the preparation of the quarterly and annual reports to the audit committee.
• Assists in annual external audit duties where required
• Evaluates findings and provides recommendations to stakeholders
• Develops and utilizes Computer Assisted Audit Techniques (CAATs) and Continuous Auditing Techniques
• Assists with driving department transformation programs which may include implementing risk based auditing approaches, streamlining processes and documentation, improving indicators and performance metrics, developing audit training and development, enhancing reporting processes
• Communicates effectively with all appropriate operational departments
• Builds strong working relationships with stakeholders
• Complies with licensing laws, health and safety and other statutory regulations
• Performs other duties as assigned or directed
Education and Qualification Requirements:
• Personification of Great Canadian’s values in action: Integrity, Team Engagement, Drive to Succeed, Service Excellence and Citizenship
• A passion for providing Great Experiences and Memories to our internal and external guests in the continual quest of achieving Service Excellence
• Undergraduate degree in information systems or computer science. Post-secondary education in accounting/finance or suitable combination of education and experience would also be considered an asset.
• Minimum of 7+ years of technology audit and business experience with mid to large range corporations or equivalent experience working in technology audit/risk consulting with a professional services firm.
• CISA designated and/or certification in at least one additional area (CISM, CISSP, GSNA) is desirable
• Excellent understanding of concepts related to information systems audit, information security, IT general controls and technology risks.
• Strong technology skills, with an understanding of operating systems, security software, network security, database management systems, business and operational applications.
• Strong knowledge of technology management disciplines including change and problem management, physical and logical security and ensuring continuous availability.
• Prior experience working with an ERP solution (e.g. JD Edwards, Oracle, SAP)
• Excellent communication skills (written and verbal)
• Advanced computer literacy in MS Office, ACL Analytics & GRC, CAATs and Visio
• Strong organizational skills to meet multiple obligations in a busy deadline oriented environment
• Ability to manage conflict with tact and diplomacy
• Ability to successfully obtain gaming registration
• Class 5 driver’s license with ability to travel to various sites
• Experience in highly regulated industry preferable
Work Environment Considerations: Regular office environment, may have non-traditional work hours
Special Working Conditions: Our reputation is of paramount importance. As such, we will conduct our business in an ethical and professional manner. Every team member will be obliged to understand and follow all of the policies outlined in Great Canadian’s Corporate Ethics & Conduct Manual, and will disclose any irregularities or wrongdoing in accordance with the Company’s Whistleblower Policy. The Company is committed to sound internal control policies and practices. Every team member will follow the internal control practices required of their position and department.
Compliance Requirements: Every team member must comply with all requirements of the Corporate Ethics & Conduct Manual and with all other corporate policies communicated to the employee. Every team member will be familiarized with the business process documentation and internal control objectives related to their position, and how their job description aligns with specific internal control activities for which they are responsible. Adhering to all company and regulatory policies as they relate to functions of the position.
Licensing and Certification Requirements: Permanent employment is dependent upon the authorization and continued approval of the Provincial/State Regulatory Bodies. New employees will complete an application, and will begin work after regulatory approval is granted. Existing team members will reapply as necessary, and continuing work will be dependent upon successful reapplication. For positions that require additional certification; the appropriate level of certification will be maintained.