The Invesco Internal Audit function provides independent assurance, advisory, and investigative services for the organization. While partnering closely with business leaders, the department focuses on the most critical risks and issues facing the organization and delivers strategic, innovative, and data-driven results. The department strives to be valued business advisors that provide meaningful solutions and insights, not just information and recommendations. Our team continuously seeks opportunities to improve our methodology by leveraging technology, data, agile principles, and creative solutions to maximize value to the organization.
As a Senior Manager of IT Audit, you will lead and develop a talented, globally dispersed team tasked with learning and assessing new technologies and cybersecurity practices across the global organization. You will also partner with other departmental leaders on integrated reviews covering areas such as Investments, Trading, Distribution, Compliance, and Finance.
General Purpose of Position
The Senior Manager of IT Audit will report to the IT Audit Director and assist with the development and planning of audit and advisory engagement activities for technology and security related domains. The Senior IT Audit Manager will also coordinate the execution of the engagements, supervise and review work performed by any staff auditors or third-party contractors, and present results and recommendations to management.
Primary Duties and Responsibilities:
The primary responsibilities include but are not limited to:
Assist the IT Audit Director with the planning and management of activities assigned to the Internal Audit Team, including supervision of staff as needed.
Advise and collaborate with staff to create and deliver innovative approaches that meet the objectives of both audit and advisory engagements.
Foster culture of agility, innovation, and continuous improvement within the Internal Audit function.
Oversee scheduling and coordination of audit and advisory engagements.
Supervise the performance of work by any assigned staff or contractors, including reviewing workpapers and managing the completion of engagements within the given timeframe.
Exercise individual judgment and initiative in selecting emphasis for coverage within engagements and determining and locating sources of information.
Review results and attend entry/exit meetings to obtain management concurrence and responses.
Prepare reports targeted to senior management and corporate directors.
Monitor and advise Management on remediation activities.
Develop and maintain strong working relationships with all business partners.
Collaborate with the IT Audit Director to design techniques and solutions to improve the organization’s control environment.
Keep Regional Director or Director informed of audit activities.
Assist in training and development of team members by providing on the job coaching, delivering constructive and motivating feedback, and participation in the performance management process.
Perform other duties and investigative analysis as assigned by the Regional Director or Director.
Actively contribute to developing a culture of risk and control awareness throughout the organization.
Travel:
Potential for up to 10% domestic.
Workplace Model
At Invesco, our workplace model supports our culture and meets the needs of our clients while providing flexibility our employees value. As a full-time employee, compliance with the workplace policy means working with your direct manager to create a schedule where you will work in your designated office at least three days a week, with two days working outside an Invesco office.
What’s in it for you?
Our people are at the very core of our success. Invesco employees get more out of life through our comprehensive compensation and benefit offerings including:
Flexible paid time off
Hybrid work schedule
401(K) matching of 100% up to the first 6% with a discretionary supplemental contribution
Health & wellbeing benefits
Parental Leave benefits
Employee stock purchase plan
The above information on this description has been designed to indicate the general nature and level of work performed by employees within this role. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities and qualifications required of employees assigned to this job. The job holder may be required to perform other duties as deemed appropriate by their manager from time to time.
Invesco's culture of inclusivity and its commitment to diversity in the workplace are demonstrated through our people practices. We are proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, creed, color, religion, sex, gender, gender identity, sexual orientation, marital status, national origin, citizenship status, disability, age, or veteran status. Our equal opportunity employment efforts comply with all applicable U.S. state and federal laws governing non-discrimination in employment.
Qualification and Experience:
Education/Formal Training:
Bachelor’s degree in Information Systems, Computer Science, Engineering, or Finance preferred.
MBA, Master‘s degree in Information Systems, Analytics, Computer Science, Engineering, or Finance a plus.
Professional auditing, security, or technology designation (e.g., CISA, CISSP, CCSP, AWS Cloud Practitioner, CFA, etc.) or to have substantially completed the requirements for such a designation while actively pursuing the completion of such designation preferred.
Work Experience:
Minimum 8-10 years of business experience in technology audit, risk management, compliance, consulting, or information security including acting in the capacity of a supervisor.
Excellent knowledge of general technology, automated, and security controls.
Experience within the asset management or securities industries a plus, with knowledge of investment products (equities, fixed income, alternatives), portfolio management, trading and investment operations and finance.
Equivalent relevant experience in the investment management industry may be substituted for direct audit, risk, compliance, consulting, or information security experience.
Experience auditing enterprise and web applications, cyber security practices, privacy, and various infrastructure platforms such as UNIX, Linux, Windows, SQL Server, Oracle databases.
Knowledge of and experience auditing networking and firewalls a plus.
Proficient in concepts and auditing of cloud platforms (AWS, Microsoft Azure, Google Cloud), services, and applications.
Experience designing and conducting data analysis to support audit objectives.
Experience designing and building continuous auditing or monitoring tools and techniques a plus.
Competency and Opportunity
Skills:
Ability to lead and motivate high performance audit team.
Excellent written and verbal communication skills.
Critical thinking and problem-solving ability; effectively identify risks and unexpected patterns in complex situations, investigate issues, analyze root cause, and determine the appropriate course of action.
Resilience in debating and discussing existing practices or contentious issues; confident in dealing with difficult situations and resolving conflicts and influencing with diplomacy while maintaining objectivity.
Effectively communicate complex, technical concepts; actively listens and promotes mutual understanding; adjusts communication styles effectively to suit the needs of different audiences.
Client service disposition; understands stakeholder needs and concerns and provides constructive feedback, sound advice, and potential solutions.
Able to build and sustain effective working relationships with business partners and external peers.
Results-oriented and comfortable as an individual contributor on certain assignments.
Proactive, self-starter and motivated; must be able to work without frequent direct supervision.
Ability to handle confidential information and communicate clearly with individuals at a wide range of levels on sensitive matters.
Strong analytical skills with rapid and confident decision making.
Excellent knowledge of leading practices around IT controls, such as the COBIT, NIST, or ISO27000 frameworks.
Excellent knowledge of technology and cybersecurity trends and tools.
Excellent project management and administrative skills.
Demonstrated ability to work in a diverse, cross-functional and international environment.
Adaptable and comfortable with changing environment.
Demonstrates high professional ethics.
Proficient with Microsoft Office (MS Word, Excel, PowerPoint, Access etc.)
As one of the world’s leading asset managers, Invesco is dedicated to helping investors worldwide achieve their financial objectives. By delivering the combined power of our distinctive investment management capabilities, we provide a wide range of investment strategies and vehicles to our clients around the world.
If you're looking for challenging work, smart colleagues, and a global employer with a social conscience, come explore your potential at Invesco. Make a difference every day!