AVP, IT Audit & Risk

About the Role

We are seeking an experienced and strategic IT Audit leader to oversee the development and execution of a global, risk-based IT audit program across North America and Asia. This role will provide independent assurance and advisory support over technology, applications, data, digital delivery, cybersecurity, and enabling platforms while partnering closely with senior business and technology executives.

The successful candidate will lead a geographically dispersed team of IT Audit professionals and play a key role in enhancing audit coverage, driving innovation through AI and data analytics, and strengthening technology risk management practices across the organization.

Key Responsibilities

• Develop and maintain a comprehensive risk-based IT audit plan aligned with organizational priorities and emerging technology risks.
• Lead and execute IT audits, special reviews, and advisory engagements across applications, infrastructure, cybersecurity, data management, digital initiatives, and technology operations.
• Deliver clear, actionable audit findings and recommendations to executive stakeholders.
• Conduct ongoing IT audit universe risk assessments to ensure adequate coverage of key risks and control environments.
• Provide technology risk and audit expertise to integrated business audits with significant IT components.

• Monitor emerging technology, cybersecurity, regulatory, and operational risks impacting the organization.
• Contribute to the evolution of audit methodologies through the adoption of AI, automation, data analytics, and innovative audit practices.
• Assess the effectiveness of technology governance, risk management, and control frameworks.

• Build trusted relationships with senior leaders across Technology, Risk, Compliance, and Internal Audit functions.
• Facilitate executive-level discussions regarding audit observations, control deficiencies, and risk themes.
• Influence improvements in risk management and control effectiveness across the organization.

• Lead and develop a global IT Audit team of approximately 15 professionals across North America and Asia.
• Drive talent development, employee engagement, coaching, succession planning, and performance management initiatives.
• Foster a collaborative, inclusive, and high-performing team culture while maintaining consistent audit quality across regions.

Qualifications

• 10+ years of progressive leadership experience within IT Audit, IT Risk, Information Security, Technology Risk Management, or related functions.
• Proven experience leading complex global audit programs and geographically dispersed teams.
• Strong people leadership experience with demonstrated success in coaching, developing, and retaining talent.
• Experience engaging and influencing senior executives and business leaders.

• Deep understanding of:
• IT Audit methodologies and standards
• Technology risk management frameworks
• Cybersecurity risk and control frameworks
• Information risk management practices
• Software Development Life Cycle (SDLC), including Agile methodologies
• Data analytics and AI-enabled audit techniques
• Strong knowledge of emerging technologies, cybersecurity trends, and industry best practices.
• Experience within financial services, insurance, banking, or highly regulated industries is highly preferred.

• Bachelor's degree in Information Technology, Computer Science, Engineering, Business, or a related field.
• Professional certifications such as:
• CISA
• CIA
• CISSP
• CISM
• CEH
• Other relevant audit, risk, or security certifications

• Strategic thinker with strong risk assessment and analytical capabilities.
• Exceptional communication, presentation, and stakeholder management skills.
• Proven ability to influence and challenge senior leadership constructively.
• Strong organizational skills with the ability to manage multiple priorities and concurrent engagements.
• Demonstrated success leading diverse teams across multiple geographies and cultures.

• Hybrid work setup.
• Occasional travel within North America and Asia may be required.