Senior Manager IT Internal Audit

About the job

Serving the needs of all families with young children, Carter’s Inc. is the largest North American apparel retailer exclusively for babies and young children, encompassing Carter’s, OshKosh B’gosh, Skip*Hop and Little Planet brands. Meaningful work, constant learning, genuine people, and a community guided by core values that promote inclusion and innovation is in everything we do. There are many reasons to build your career at Carter’s.

How You’ll Make An Impact

The Senior Manager IT Internal Audit is a critical part of the Carter’s Internal Audit Team. This individual will be responsible for the overall IT audit plan, including execution of risk-based technology focused Internal Audit projects across multiple technology domains and business segments.

This role reports to the VP, Internal Audit & Enterprise Risk Management, will manage 1 direct report and and is based in our Buckhead office in our hybrid work environment.

• Lead the development of a comprehensive IT-focused risk-based audit plan that reflects a thorough understanding of business activities, risks, processes and controls
• Manage the IT audits including planning, budgeting, scheduling, review, external auditor interaction, and draft report preparation
• Identify and assess IT security fundamentals across multiple domains including cyber security, security management, PII, Cloud, security architecture, access control, application development, operations security, physical security, telecommunications and networking, business continuity planning, project management, and investigations, and ethics
• Lead the development of digital analytics and automation as a core capability within the Internal Audit team; Identify opportunities to leverage analytics and drive insights as part of internal audit activities
• Provide on the job training for team members less experienced in IT concepts
• Produce impactful audit results through integrated audit teams ensuring highest level service quality and client satisfaction
• Effectively interface with various levels of management; build relationships with business and IT stakeholders, internal audit team members, and external auditors
• Work in partnership with IT Senior Management and other risk/control functions to ensure that Company IT processes, business activities, and internal controls are effective in managing operational, financial, regulatory and business risks; Working with and influencing IT Senior Management to mitigate risks identified and provide best practice recommendations
• Work with broader internal audit team on executing audits and reviews of Company functions, processes, and other activities to ensure reliability and integrity of information, proper recording of transactions, safeguarding of assets, compliance with policies and procedures, achievement of operational goals and objectives, and effective and efficient use of resources; Internal Audit programs/projects will be defined in the annual Internal Audit plan and will include activities in the following areas: financial, operational, compliance, and information technology

Sox

• Serve as primary IT point of contact for security and controls risks for SOX testing and coordination with IT management and external auditor
• Lead internal audit team in executing walkthroughs, internal control operating effectiveness testing, and substantive procedures to test the Company’s compliance with Sarbanes-Oxley (SOX) Section 404, document work performed, communicate exceptions/deficiencies, and follow-up with process/control owners on deficiencies
• Identify opportunities for continuous improvement of the SOX Compliance program (IT Controls) including the use of analytics and continuous monitoring
• Continuously improve internal audit approaches, tools and methodologies, and productivity; implement continuous monitoring/auditing capabilities
• Makes oral or written presentations to executive and senior management regarding audit activities, results, themes of findings, recommends corrective actions, and suggests best practice improvements
• Monitors ongoing remediation of deficient systems or processes and develops updates or modifications to recommendations and findings as needed
• Special projects, including actively participating in critical governance meetings as an Internal Audit subject matter expert
• Assist with the Company’s Enterprise Risk Management process, when needed
• Execute tasks/testing for investigations and management requests on an as-needs basis
• Provide ad-hoc analysis and reports as requested
• Opine on various company-wide initiatives, such as system implementations and reviews of policies and procedures

Must Have

WE’D LOVE TO HEAR FROM YOU IF:

• 10+ years internal audit, financial statement audit, information technology audit, and/or audit consulting experience
• Experience performing Cybersecurity, Cloud, Nymity, HIPPA, PII, PCI, TPRM, or NIST assessments
• Strong analytical, written, and verbal communication, interpersonal, listening, interviewing, organizational, consulting, time-management, and presentation skills
• Excellent interpersonal skills including verbal and oral communications
• BA/BS Management Information Systems/Computer Science/Accounting/Finance
• CISA certification

Preferred

• Strong understanding of information technology auditing techniques and data analytics
• Solid understanding of auditing, GAAP, SOX Section 404, risk, and controls
• Strong understanding of fraud prevention/detection/awareness/auditing techniques
• Strong documentation (reporting, narratives, and flow charts)
• Experience managing less IT experienced team members to achieve deadlines/audit plan requirements
• Knowledge of technology used in the audit process, data analysis techniques, and data visualization (e.g., Alteryx, SQL, Access, Excel, and Tableau preferred)
• Experience achieving deadlines/audit plan requirements
• Demonstrated knowledge of ERP systems and associated auditing techniques; SAP is preferred

Our Team Members

• Lead Courageously: Have a strong sense of personal values that align with our Company values
• Collaborates Broadly: Build cooperation, trust, and thrive in a consensus driven environment
• Customer Focus: Proactively seek opportunities to leverage data and fact-based insights to serve customers and/or internal clients
• Drive Growth: Set aggressive goals and implement plans precisely
• Cultivates Innovation: Respectfully challenge the “we’ve always done it this way” mentality and explore new ways to achieve desired outcomes

Make a Career At Carter’s

• Career Development: Success starts from within, and we have several paths from which you can choose to enhance your career evolution. From Carter’s University to Toastmasters to mentorship programs and more, we encourage you to utilize these tools to elevate your professional prowess.

Carters is committed to creating a diverse environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity, sexual orientation, national origin, genetics, disability, age, veteran status, or any other status protected by federal, state, or local law.