Job Description
About the position When you join bolthires, you want more out of a career. A place to share your ideas freely — even if they're daring or different. Where the true you can learn, grow, and thrive. At bolthires, we power and empower how people live, work and play by connecting them to what brings them joy. We do what we love — driving innovation, creativity, and impact in the world. Our V Team is a community of people who anticipate, lead, and believe that listening is where learning begins. In crisis and in celebration, we come together — lifting our communities and building trust in how we show up, everywhere & always.
Want in? Join the #VTeamLife. Our mission is to drive continuous improvement, and your contributions will be instrumental in achieving this goal. You'll provide objective evaluations of our technology and cybersecurity processes to help us refine and enhance them. Through collaboration with various business leaders, you'll gain exposure to diverse aspects of our operations related to technology and cybersecurity controls, processes, and systems. Your work will play a critical role in reducing risk and safeguarding our company, employees, and shareholders.
As a Technology/Cybersecurity Internal Audit Manager, you'll perform and oversee audit projects, coach staff, conduct training, assist with daily assignments, integrate industry expertise into internal audit frameworks, enhance testing methodology, ensure consistent evidence standards, create tools and testing environments, and promote cybersecurity and software engineering skills within the team. Leading and/or supporting the design and execution of complex Technology/Cybersecurity audits that bolthires high-risk areas in the company's controls, systems, and processes that are aligned with the supporting archiving strategic objectives.
Overseeing the audit team to ensure that audit deliverables are complete, accurate, and meet IIA auditing standards in the VIA Manual. Performing due diligence on potential observations, including identifying process owners and mitigating controls. Supporting multiple Technology/Cybersecurity audit projects with competing deliverables while balancing the needs of the business. Drafting potential observations and audit reports, including mitigating factors and risk analysis. Communicating risk ranking to management and process owners.
Leading vetting calls with process owners to discuss and gain agreement on identified observations. Providing feedback to staff on drafting, prioritizing, and supporting observations to enhance their skills. Responsibilities • Perform and oversee audit projects related to technology and cybersecurity. • Coach staff and conduct training. • Assist with daily assignments and integrate industry expertise into internal audit frameworks. • Enhance testing methodology and ensure consistent evidence standards.
• Create tools and testing environments. • Promote cybersecurity and software engineering skills within the team. • Lead and support the design and execution of complex Technology/Cybersecurity audits. • Oversee the audit team to ensure deliverables meet IIA auditing standards. • Perform due diligence on potential observations. • Support multiple Technology/Cybersecurity audit projects. • Draft potential observations and audit reports. • Communicate risk ranking to management and process owners. • Lead vetting calls with process owners.
Requirements • Bachelor's degree and at least four years of experience in IT Audit, Internal Audit, Security & Privacy Services, Business Process Controls, IT Risk Management, SOX Advisory, or related compliance work. • Ability to lead technical discussions and communicate with business stakeholders. • Overall understanding of general and advanced IT controls and cybersecurity protocols. • Proficiency in basic data queries and executive summary data visualizations using tools like SQL, bolthires Data Studio, Tableau, Alteryx, Qlik, etc.
• Familiarity with networks, operating systems, midrange platforms, personal computers, system development, and client/server architecture. • Excellent written and verbal communication skills. • Strong project management skills to manage multiple audits simultaneously. • Willingness to travel approximately 25% of the time. Nice-to-haves • Degree in Accounting, Information Systems, Computer Science, or a related field. • Professional certifications such as CISA, CSX-P, CISSP, CIA, or CPA. • Ability to understand and apply security frameworks and standards, including NIST Cyber Security Framework, COBIT, ISO 27001/27002, and CIS Security Controls.
• Understanding of network and system security practices across major computing areas. • Prior work experience in a Public Accounting environment specializing in technology-based audits and cybersecurity. Apply tot his job