Director of IT Audit Services | #education | #technology | #techjobs

Description

Position Description

The Department of Internal Audit reports directly to the
University of Colorado (CU) Board of Regents through its Regent Audit Committee to ensure the University receives high quality audit,
investigative, educational, and consulting services across the entire CU System. The Audit Director is responsible for planning and
executing assurance and advisory engagements, primarily in the information technology and security space, for the benefit of the university.

The individual in this position: (1) possesses knowledge associated with the professional practice of internal auditing, including
information systems auditing; (2) applies theories, methods, principles, and practices associated with professional internal auditing and
information systems auditing; (3) performs duties associated with professional auditing that are predominantly intellectual and varied in
nature, requiring creative, analytical, evaluative, interpretive, and/or critical thinking; and (4) exercises discretion and independent
judgment, requiring only general supervision for day-to-day tasks.

This security-sensitive position requires a criminal and
financial background check for initial appointments, or at any time when determined by the position’s supervisory authority to be in the
best interests of the University. In addition, this position requires adherence to the Code of Ethics promulgated by The Institute of
Internal Auditors and the University’s Fiscal Code of Ethics.

This position reports to the Associate Vice President of Internal
Audit (AVP) and is exempt from the State of Colorado Classified Staff System.

COVID-19
The University of
Colorado has a requirement for COVID-19 vaccinations and full completion of the attestation form within the first 30 days after hire date.
Information regarding this requirement, and exemptions can be found at https://www.cu.edu/vaccine-requirement https://www.cu.edu/vaccine-requirement

Duties and
Responsibilities

Duties and responsibilities of the position include, but are not limited to:

Functional and
Technical Project Management

• Responsible for supporting the annual risk assessment and specific audit planning processes.
• Supports AVP in periodic reassessment of the annual audit plan for emerging risks and relevance/timing of planned projects.
• Executes the audit plan through timely project completion.
• Responsible for looking beyond project risk to higher level program
  and enterprise risk to understand the implications across the university.
• Performs a high-level analysis of risk that translates
  to actionable recommendations for stakeholders.
• Untangles highly complex issues and risk to the ultimate root cause.
• Leverages projects and stakeholder needs into projects that reduce university’s overall risk profile and enable achievement of strategic
  goals and objectives.
• Produces executive-ready work product with minimal revision necessary.
• Represents the concerns and
  perspectives of Internal Audit Department at interdepartmental and/or intercampus meetings.

Department Planning and
Administration

• Sets a strong example for the team to engage in critical thinking and high-level root cause analysis.
• Effectively communicates the department strategy and translates it into tactical execution of key projects.
• Supports the AVP
  in alignment and achievement of departmental strategic goals and objectives.
• Actively leads and supports the departmental
  strategic initiatives and projects.
• Supports the department budgeting process, leads in stewarding department and university
  resources.
• Identifies opportunities for team development and stretch goals for team members.
• Supports recruiting efforts
  within the department.
• Uses appropriate methods and a flexible interpersonal style to help build a cohesive team, facilitates the
  establishment of team goals and tracks team progress to ensure goals are met.
• Supports and participates in the development of the
  agendas and related materials for the Regent Audit Committee meetings.
• Has oversight responsibilities for the coaching, training,
  performance evaluation and professional development of assurance team members.
• Proactively and effectively manages interpersonal
  conflict, reaching positive and productive solutions that are focused on professional growth and development, as well as successful project
  completion.

Communication & Collaboration

• Works collaboratively across the Internal Audit team, fostering
  creativity, continuous improvement, and a strong sense of community.
• Initiates and maintains strategic relationships that remove
  barriers across the organization and support departmental goals.
• Acts as an ambassador for Internal Audit, positively influences
  the business and risk management functions in terms of the value Internal Audit can bring.
• Stays active in the Internal Audit
  community to keep abreast of innovative practices and emerging risks.
• Encourages high level of collaboration across all levels of
  stakeholders, effectively networks throughout the university.
• Negotiates to allow for win-win resolutions to difficult issues with
  stakeholders.
• Clearly and succinctly conveys information and ideas to individuals and groups in a variety of situations;
  communicates in a focused and compelling way that drives others’ thoughts and actions.
• Uses appropriate
  interpersonal/communication styles and understanding of key drivers to create and gain buy-in from stakeholders.
• Coordinates with
  external auditors and provides support on external audits as appropriate.

Education and Counseling

• Provides
  advice, counsel and education to the university community through such mechanisms as workshops, committee participation, and consultation
  projects, to enhance the university’s understanding of sound business practices that improve process quality, risk mitigation, and
  university objective achievement, and strengthens the control environment.
• Establishes role as subject matter expert by
  stakeholders and university executive management.

Continuous Improvement and Adaptability

• Develops and improve
  knowledge and skills outside of core technical area, related to the theories, methods and principles of the profession of internal auditing,
  and knowledge of the University environment.
• Shares knowledge by preparing and delivering development sessions, counseling and
  education to department staff, peers and others.
• Critically evaluates Internal Audit processes for continuous improvement
  opportunities.
• Supports the Quality Assessment and Improvement Program.

Who we are and What we offer

Who we are: System Administration, which also houses the Office of the President, is located in the uptown
neighborhood of Denver with a few smaller offices located on the campuses. However, this position is located in Denver, and requires
a hybrid work schedule. Many of our departments support the educational and research missions of the four University of Colorado
campuses, but System Administration is not considered a campus. We provide diverse opportunities for professional development, innovation,
and collaboration with talented staff and faculty. Learn more about CU System
Administration.

What we offer:

Salary: The anticipated hiring range has been
established at $140,000- $152,000

The salary of the finalist(s) selected for this role will be set based on a variety of factors,
including but not limited to, internal equity, experience, education, specialty and training. The above salary range (or hiring range)
represents the University’s good faith and reasonable estimate of the range of possible compensation at the time of posting.

Benefits: The University of Colorado offers an excellent benefits package including:

• Medical: Multiple plan options
• Dental: Multiple plan options
• Additional Insurance: Disability, Life, Vision and Wellness
• Retirement 401(a)
  Plan: Employer contributes 10% of your gross pay
• Paid Time Off: Accruals over the year
  • Vacation Days: 22
  • Sick Days: 15
  • Holiday Days: 10
• Tuition
  Benefit: System employees have the benefit on all campuses
• ECO Pass: RTD Bus and light
  rail service
• Additional Perks & Programs: Click here to access a few more Perks and Programs

Click here to access our Total Compensation Calculator to see what your total rewards could be at CU. This position is a University Staff
position.

Additional taxable fringe benefits may be available.

More information on benefits programs, including eligibility,
is available at www.cu.edu/employee-services/.

Knowledge, Skills, and
Abilities

To be successful in this position, candidates will need the following:

• Advanced knowledge associated
  with the professional practice of information technology and systems auditing
• Knowledge of higher education organizations, fiscal
  management, and governance
• Knowledge and understanding of the International Standards for the Professional Practice of Internal
  Auditing, as promulgated by the Institute of Internal Auditors, and ISACA’s Information Technology Assurance Framework
• Collaboration skills, including the ability to work with others from different areas and backgrounds to reach a common goal
• Computer skills, including the ability to utilize Microsoft Office programs (i.e. Word, Excel, PowerPoint, Outlook, etc.) and learn and
  experiment with new software and systems
• Interpersonal skills, including the ability to facilitate interaction, communication, and
  teamwork between others
• Oral, written, and listening communication skills, including the ability to accurately interpret what
  others are saying and convey messages, information, concepts, and details accurately and clearly
• Organizational skills, including
  the ability to set and meet goals and deadlines, manage appointments, create schedules, coordinate and facilitate meetings, and make
  decisions
• Analytical and problem-solving skills, including the ability to examine and summarize complex data and trends to
  resolve issues, produce results, and draw broader conclusions (i.e., business acumen)
• Ability to follow and uphold ethical
  guidelines, standards, and integrity and adhere to core character values of trustworthiness, respect, responsibility, fairness, caring, and
  good citizenship
• Broad base of general business and university knowledge, subject matter expertise in at least two areas relevant
  to IT and information systems audit.
• Ability to simultaneously direct multiple audits or special projects.
• Demonstrates
  strategic level understanding of the university risk universe, and value and impact of all projects on the audit plan.
• Understands university’s strategic goals and is able to tailor project objectives, scope, and programs to address those goals.
• Demonstrates executive presence when presenting to university leadership; able to effectively communicate with all levels of relevant
  university personnel.
• Exercises professional judgement and maintains confidentiality of sensitive and privileged information and
  communications
• Able to handle complex problems or challenging situations at a strategic level.

Qualifications

Minimum Qualifications:

Please ensure your resume includes any
and all relevant experience to be accurately assessed against these qualifications. You must meet all minimum requirements listed at the
time of application to be considered for this role.

• A Bachelor Degree or advanced degree from an accredited university
  of higher education in a field of study relevant to information management, information/computing science or engineering, business or
  finance, mathematics or numerical analysis, or similar or equivalent professional experience (the educational requirement may be substituted
  by professional experience on a year for year basis).
• Seven (7) years of audit-related or business experience related to any of
  the fields specified in the degree requirement including:
  • Six (6) years of project management and team leadership experience
• An active Certified Information Systems Audit (CISA) certification
• Local and regional travel to CU
  campuses. Travel is required on an “as needed” basis.
• Proficiency with the use of Microsoft Office programs and data analytics
  tools

Preferred Qualifications

• An advanced degree in a relevant computing or business field, or in
  any field that enhances analysis, communication, or interpersonal interaction
• Ten (10) years’ professional experience as listed
  above
• Professional experience in higher education, research institutions, technology management, or business analysis
• Additional audit, IT-Audit, business, security, management, or technical certifications relevant to audit activity
• 
  Experience with policy development, management, compliance, and research
• Experience with relevant industry, security, privacy,
  or compliance frameworks and standards such as COBIT, HIPAA, FERPA, ITIL, PCI, etc.
• Experience providing relevant technical
  guidance from organizations promoting technology best-practices or standards for IT security, privacy, operations, and service management
  such as NIST, ISO, OWASP, CIS and others
• Extensive experience or skills in any IT technological role such as program management,
  operations, security, data management or analysis, or application development
• Current experience in data analytics and
  visualization, business intelligence, data mining and related data science fields of study (practical experience with applications such as
  ACL, Tableau, SQL Server, SAS or similar is beneficial)
• Project and team management experience
• Certified Fraud
  Examiner (CFE), Certified Internal Auditor (CIA), or relevant audit-related certification.

Special Instructions to Applicants :
Review of applications will continue until the position is filled. Reference checking is a standard step in our hiring process. You may be
asked to provide contact information, including email addresses, for up to five references as part of the search process for this position.
*Please note: All application materials must be submitted through CU Careers; emailed materials will not be considered.* The University of
Colorado is committed to providing a safe and productive learning and living community. To achieve that goal, we conduct background
investigations for all final applicants being considered for employment. Background investigations include a criminal history record check,
and when appropriate, a financial and/or motor vehicle history. The Immigration Reform and Control Act requires that a verification of
employment eligibility be documented for all new employees by the end of the third day of work. The University of Colorado is committed to
diversity and equality in education and employment. We are committed to an inclusive and barrier-free search process. We provide
accommodations for applicants requesting accommodation through the search process such as alternative formats of this posting. Individuals
with disabilities in need of accommodations throughout the search process should contact the ADA Coordinator at: systemhr@cu.edu. Application Materials Required : Cover Letter, Resume/CV Application Materials
Instructions : You must attach a cover letter, resume, and references to your application as three separate documents. Please identify the
job specific minimum qualifications you possess in your cover letter and be sure your resume includes any and all relevant experience to be
accurately assessed against the qualifications listed in the posting. Also, ensure you check the “Job Specific Attachments” box next to each
document on the “Required Documents” page of the application for the appropriate documents to be attached.

Job Category:
Audit and Legal

Department: S0001 — System Administration – 50003 – Internal Audit

Posting Date: Apr 22, 2022

Closing Date: Ongoing

Contact Name: CU
System HR

Contact Email: Systemhr@cu.edu

Posting Number:
00654992