IT Audit Manager, Internal Audit - VP Finance

Description

University Audit Services within VP Finance is currently seeking a Full-time Regular IT Audit Manager, Internal Audit.

Reporting to the Senior Director, Internal Audit, the IT Internal Audit Manager plays a key role in developing and delivering the University's technology audit program. This position is responsible for executing and leading IT audit engagements and providing independent, objective assurance over the effectiveness of IT controls, risk management, and governance processes.

Operating within a complex and decentralized academic environment, the Manager applies technical expertise to assess IT general controls, applications, cybersecurity, and data governance practices across the institution. The role also contributes to continuous improvement of audit methodologies, tools, and analytics capabilities.

Summary of Key Responsibilities (job functions include but are not limited to):

Technology Audit Delivery \& Leadership (Primary Focus)

Lead and execute complex IT and integrated audits, including planning, fieldwork, and reporting, to assess IT general controls (ITGCs), application controls, cybersecurity, data governance, and emerging technology risks.

Lead and mentor audit staff assigned to technology engagements, including work planning, review, coaching, and performance feedback.

Ensure audit work meets professional standards (IIA, ISACA) and Internal Audit methodology, with high-quality documentation and reporting.

Evaluate the design and operating effectiveness of controls across ERP systems, research systems, cloud platforms, and critical infrastructure.

Identify and assess risks related to cybersecurity, privacy, business continuity, system implementations, and third-party providers.

Resolve complex audit issues and escalate key risks and control gaps to senior leadership in a timely manner.

Build effective working relationships with IT Services, cybersecurity teams, and administrative units

Audit Planning \& Risk Assessment

• Support the development and ongoing refinement of the risk-based internal audit plan with a focus on technology risks and digital transformation initiatives.
• Conduct IT risk assessments, including emerging risks such as AI, cloud computing, and data analytics, to inform audit priorities.
• Provide insights into institutional risk exposures and control maturity across IT domains.

Audit Systems, Tools \& Innovation

• Act as administrator for audit and compliance platforms (e.g., CrossComply), ensuring effective configuration, data integrity, and usability.
• Maintain and enhance audit tools and systems to support efficient audit execution and reporting.
• Collaborate with IT and business stakeholders to ensure alignment between audit tools,

governance frameworks, and institutional systems.

Data Analytics \& Continuous Monitoring

• Lead the development and application of data analytics to enhance audit coverage, efficiency, and insight generation.
• Analyze large datasets to identify trends, anomalies, and risks, supporting both individual audits and continuous monitoring initiatives.
• Enable and mentor audit staff in the use of data analytics tools and techniques.

Business Intelligence \& Reporting

• Administer the Internal Audit Power BI environment, including governance, data models, and reporting assets.
• Design and deliver dashboards and reports that provide meaningful insights into risk, audit results, and performance metrics.
• Communicate findings clearly to technical and non-technical audiences, including senior leadership.

Operational Contributions

• Contribute to the continuous improvement of Internal Audit processes, methodologies, and templates.
• Participate in departmental initiatives, special projects, and cross-functional work as required.

Qualifications / Requirements:

• Related Bachelor's degree
• Professional certification such as CISA, CIA, CISSP, or CPA is strongly preferred
• Minimum 5-8 years of relevant experience in IT audit, IT risk, cybersecurity, or related areas
• Experience executing IT audits, including testing IT general and application controls
• Experience working in complex or decentralized environments (public sector or higher education considered an asset)
• Experience providing guidance or mentorship to junior staff or team members
• Ability to navigate governance frameworks, decentralized operations, or complex stakeholder networks considered an asset
• Deep knowledge of IT control frameworks and standards (e.g., COBIT, NIST, ISO 27001, ITIL)
• Strong understanding of cybersecurity, data governance, privacy, and digital risk managementExpertise in IT general controls, application controls, and system implementation reviews
• Advanced analytical and problem-solving skills with experience in data analytics tools (e.g., Power BI, ACL, Python)
• Strong communication skills with the ability to translate technical risk into business impact
• Proven ability to build relationships and influence stakeholders in a decentralized environment
• Collaborative team player with strong interpersonal skills.

Application Deadline: June 15, 2026

We would like to thank all applicants in advance for submitting their resumes. Please note, only those candidates chosen to continue on through the selection process will be contacted.

This position is classified in the Professional Career Band, Level 4 of the Management and Professional Staff Career Framework.

For a listing of all management and staff opportunities at the University of Calgary, view our Management and Staff Careers website.

About the University of Calgary

UCalgary is Canada's entrepreneurial university, located in Canada's most enterprising city. It is a top research university and one of the highest-ranked universities of its age. Founded in 1966, its 36,000 students experience an innovative learning environment, made rich by research, hands-on experiences and entrepreneurial thinking. It is Canada's leader in the creation of start-ups. Start something today at the University of Calgary. For more information, visit ucalgary.ca.

The University of Calgary has launched an institution-wide Indigenous Strategy ii' taa'poh'to'p committing to creating a rich, vibrant, and culturally competent campus that welcomes and supports Indigenous Peoples, encourages Indigenous community partnerships, is inclusive of Indigenous perspectives in all that we do.

The university's commitment to the Indigenous Strategy is evident through the oversight of 18 Elders serving on the Circle of Advisors and the many unit-based circles working towards implementation of the strategy including the Faculty Advisory Circle and teams such as the Office of Indigenous Engagement, the Writing Symbols Lodge, and the Indigenous Research Support Team. Many Indigenous-based events and processes are impacting curriculum, programming and polices at the University of Calgary.

As an equitable and inclusive employer, the University of Calgary recognizes that a diverse staff/faculty benefits and enriches the work, learning and research experiences of the entire campus and greater community. We are committed to removing barriers that have been historically encountered by some people in our society. We strive to recruit individuals who will further enhance our diversity and will support their academic and professional success while they are here. In particular, we encourage members of the designated groups (women, Indigenous peoples, persons with disabilities, members of visible/racialized minorities, and diverse sexual orientation and gender identities) to apply. To ensure a fair and equitable assessment, we offer accommodation at any stage during the recruitment process to applicants with disabilities. Questions regarding [diversity] EDI at UCalgary can be sent to the Office of Institutional Commitments ([email protected]) and requests for accommodations can be sent to People \& Culture ([email protected]).

Do you have most but not all the qualifications? Research show that women, racialized and visible minorities, and persons with disabilities are less likely to apply for jobs unless they meet every single qualification. At UCalgary we are committed to achieving equitable, diverse, inclusive and accessible employment practices and workplaces and encourage you to apply if you believe you are right for this role.

We encourage all qualified applicants to apply, however preference will be given to Canadian citizens and permanent residents of Canada.