Compétences recherchées — Connectez-vous et téléversez votre CV pour comparer avec votre profil
Cybersécurité Intelligence artificielle Audit IT +7 autres

Détails du poste

  • Lieu de travail : Montreal (Hybride)
  • Type de poste : Permanent à temps plein

Description du poste

Our client is looking for a Sr. IT Audit specialist to support the organization’s Internal Audit function by assessing information technology risks, controls, and governance practices.

Hybrid in Ottawa or Montreal (1-2 days per week on site)

Tasks include:

  • Leading and delivering complex IT audit engagements end-to-end, acting as the engagement lead and ensuring a strong focus on risk, quality, and value. This includes defining the audit scope and approach to target critical and emerging technology risks such as cybersecurity, cloud services, data and privacy, identity and access management, artificial intelligence, and third-party technology. The role requires a forward-looking perspective, incorporating evolving regulatory expectations and leading industry practices into audit planning and execution.
  • Leading and performing hands-on audit work in high-risk and complex areas, including risk assessment, control evaluation, testing of key processes, and development of well-supported audit conclusions. They guide, review, and challenge the work performed by auditors to ensure the quality of analysis, sufficiency of evidence, and sound professional judgment. This role plays a key part in maintaining audit rigor and consistency across engagements.
  • Develop clear, concise, and impactful audit findings that articulate root causes, risk implications, and meaningful opportunities for improvement. This includes preparing and presenting executive-level reports, summaries, and presentations for senior management and the Audit Committee, ensuring messaging is tailored, credible, and focused on driving action and informed decision-making.
  • Serving as a primary point of contact for Director- and VP-level stakeholders, communicating audit objectives, emerging issues, and conclusions with clarity and influence. This includes contributing in identifying systemic issues and common themes across audits to inform broader IT risk discussions. The role also supports the continuous improvement of IT audit practices, including advancing the use of data analytics and mentoring team members to strengthen audit capability and quality.
  • Utilizing modern risk and assurance techniques, including data analytics and Generative AI where appropriate, to enhance risk sensing, testing coverage, and reporting insights, improving precision, efficiency, and reducing reliance on manual processes.

Exigences

Must have:

  • Reliability level security clearance
  • Bachelor's degree in information systems, computer science, or engineering. A combination of education and relevant professional experience may be considered equivalent. For the purposes of this requirement, equivalency may include a bachelor’s degree in an unrelated field combined with a minimum of ten years of demonstrated experience IT audit, IT risk, cybersecurity, technology governance, or technology assurance.
  • 5+ years experience in IT audit, IT risk, cybersecurity, technology governance, or technology assurance
  • Current professional certification in information security, risk management, governance, or audit disciplines

Qualifications

Nice to have

  • Experience leading and delivering complex IT audit or technology assurance engagements from planning through reporting, including risk assessment, scoping, testing, conclusion development, and stakeholder management
  • Ability to assess and challenge technology risks and control environments across complex IT domains such as cybersecurity, cloud services, identity and access management, data and privacy, AI, third-party risk, or technology operations
  • Experience developing audit findings and executive-level reporting that clearly articulate root causes, risk implications, recommendations, and actionable outcomes for senior leadership
  • Experience applying data analytics, automation, and/or Generative AI techniques to enhance risk assessment, audit testing, assurance activities, or reporting insights
  • Knowledge and practical application of recognized risk and control frameworks (e.g., NIST, COBIT, ISO x, CIS Controls) and the ability to incorporate leading practices into audit or assurance activities