Manager, IT Risk and Controls - Insight Global
Atlanta, GA 30346-1537
About the Job
The Manager, IT Risk and Controls is a subject matter expert responsible for managing and leading a
small team for the implementation and execution of the enterprise internal IT controls program.
They are responsible for ensuring that an organization’s technology systems are secure and
compliant with industry regulations by working closely with IT departments to identify potential risks
and develop strategies to mitigate them. They will serve to assist the IT functions in carrying out
control activities and ensuring an effective control environment. This role will focus on controls
testing activities, performing risk assessments, and providing guidance on the design,
implementation and execution of controls for systems and processes. They will also be responsible
for designing and monitoring IT General Controls to ensure the overall security and integrity of the
organization’s IT infrastructure and systems. This is a people manager role.
• Manage and drive solutions for stronger IT controls, and in support of risk and/or regulatory
compliance related initiatives.
• Collaborate with IT departments on control design, implementation and monitoring of
controls.
• Drive organizational adherence to the internal IT controls framework and identifying and
implementing actions to enhance IT controls and policies.
• Evaluate the impact of IT changes on policies, risks, controls, and governance processes.
• Establish and enforce the IT governance frameworks and policies to ensure efficient IT
management and regulatory compliance.
• Manage risk appetite metrics to ensure successful delivery of mitigating actions.
• Ensure timely maintenance of all IT control evidence and oversees the development and
completion of control remediation plans.
• Assist with translating control deficiencies into action plans and provides recommendations
to enhance governance practices in alignment with risk and compliance frameworks.
• Advise executive leadership on the status of their control environment related to risk
identification and control weaknesses. Identifies critical areas to monitor and escalates
issues and findings to appropriate stakeholders
• Develop and maintain processes, procedures and tools.
• Understand applicable regulations and associated controls.
• Other duties as assigned.
People Management:
• Act as a cultural advocate internally and extremally
• 3+ years of experience managing and developing people
• A positive mindset.
This Job is for You If:
• Your experience gives you both a broad and deep understanding of IT organizations and
functions.
• You enjoy the challenge of analyzing processes and creating valuable improvements.
• You are organized and can work on multiple projects concurrently.
• You are not afraid to ask questions and express your thoughts.
• You are eager to take on professional challenges.
• You can see what needs to be done and take appropriate action.
• You enjoy interacting with others to identify and solve complex challenges.
Relevant Experience:
• 10-15 years of progressively increasing responsibility in IT organizations.
• Bachelor’s Degree in Information Systems, Accounting, Finance, or business-related field.
• Experience with IT General Controls and auditing.
• Experience in ITIL and/or Process Improvement.
• Excellent analytical, critical thinking, organizational, and communication skills
• Excellent business partnership, verbal and written communication skills
• Strong tactical and strategic thinking, analysis and problem-solving skills
• Proven ability to successfully juggle multiple priorities and willing to shift direction quickly
when priorities change.
• Identify, own and track issues through resolution.
• Solid technology and financial management acumen
• 5+ years experience in IT risk management, IT audit or related field
• Knowledge of COSO Framework with strong working knowledge of internal controls
• Demonstrated risk management knowledge, including risk assessment, control evaluation
and compliance testing.
• Works comfortably in a fast-paced and dynamic environment managing multiple projects
Gives You an Edge:
• Knowledge of Control Frameworks such as SOX 404(Sarbanes Oxley) NIST 800-53, CIS 20, SOC
Reports, GDPR, PCI -DSS, COBIT 5, COSO etc.
• Familiarity with Auditing software and GRC tools
• ITIL/Six Sigma/Lean certifications