- Develop and execute the annual IT audit plan in collaboration with the Head of Internal Audit, ensuring coverage of high-risk areas across the entire technology landscape. - Lead and execute the full IT audit lifecycle (planning, fieldwork, documentation, and reporting). - Lead and perform IT SOX audit, focusing on IT General Controls (ITGCs), application controls and key reports within key financial and operational systems. - Coordinate effectively with external auditors to maximize reliance on Internal Audit's work, ensuring efficient and well-documented control testing. - Design and execute complex operational audits and advisory projects related to cybersecurity, data privacy, third-party risk, system development and transformation initiatives, HIPAA, and other technology related regulatory compliance and risk areas. - Effectively communicate audit results, control deficiencies, and risk implications to senior management, and support the remediation process by providing practical, risk-based guidance and monitoring the timely and effective implementation of corrective actions. - Assist the Head of Internal Audit in the preparation of materials and presentations for reporting to the Audit Committee. - Serve as a subject matter expert on IT controls and risk management, partnering cross-functionally with business and technology teams to understand upcoming process and system changes and providing proactive advisory input early in the process. - Provide direct support for business control testing and other special projects as needed, leveraging systems expertise to support the broader audit function. - Drive continuous improvement of audit methodologies, tools, and practices, and ensure all audit documentation is maintained in compliance with professional and regulatory standards. - Stay current on trends in technology, cybersecurity, and regulatory frameworks impacting internal audit (e.g., NIST, COBIT, SOX, SOC, COSO, ISO 27001).