IT Audit Manager

OVERVIEW: The IT Audit Manager is a trusted, independent advisor to management, and will be responsible for planning, performing, documenting, directing, and overseeing the execution of IT audits and assessments within the organization. The IT Audit Manager will be responsible for evaluating the effectiveness of information systems controls, policies, and procedures, as well as identifying and assessing IT-related risks. The IT Audit Manager will manage IT Audit team member(s), providing guidance and mentorship to ensure the quality and consistency of audit work. The IT Audit Manager role requires critical thinking, effective communication skills, and attention to detail.

KEY RESPONSIBILITIES:

• Apply the International Professional Practices Framework (IPPF) and the Global Internal Audit Standards to all audit projects.
• Conduct an annual IT risk assessment that aligns with MarineMax’s strategic plan.
• Complete and report on the evaluation of the design and operating effectiveness of MarineMax’s general IT control environment, in accordance with COSO/COBIT frameworks and Sarbanes-Oxley requirements.
• Manage the day-to-day activities performed by the Senior IT Auditor related to all SOX compliance GITC testing activities.
• Manage all risk-based IT projects identified in the annual audit plan, focusing on a wide range of areas/technologies including (but not limited to) general IT controls, application controls, system implementations, cybersecurity, data privacy, database management systems, operations systems, ERPs and 3 party risk management.
• Development of individual IT audit plans and programs; ensure successful completion of all IT-focused audits/projects and communicate the status of on-going assignments to the Senior Manager and Vice President.
• Recommend process, security, technology, operations, and compliance enhancements.
• Prepare and present reports that reflect audit results and recommendations for improvements and remediation.
• Monitor the status and timely implementation of internal and external IT audit recommendations.
• Ensure successful completion of management ad-hoc requests and/or special projects as needed.
• Manage, develop, train, and mentor Senior IT Auditor on projects and assess performance for engagement and year-end reviews.
• Perform additional duties as assigned.

KEY RESULT AREAS:

• Achieve on-time delivery of assigned tasks, ensuring deadlines are consistently met.
• Produce high-quality audit workpapers, maintaining attention to detail.
• Completion of all work related to MarineMax’s annual Sarbanes-Oxley compliance project.
• Completion of all IT-focused projects outlined in the annual Internal Audit plan, within the agreed upon timing and budget.  
• Evaluation, monitoring, and resolution of findings identified by the internal and/or external audit teams. 
• Actively participate in team meetings, proactively share ideas, and foster open communication to enhance collaboration and contribute to success of the Internal Audit department.
• Development of effective and positive working relationships throughout the organization.
• Maintain the highest levels of integrity and confidentiality as it relates to all Internal Audit projects.
• Engage in continuous learning opportunities to improve skills and stay informed about industry trends.

QUALIFICATIONS:

• Bachelor’s degree in Information Technology, Information Systems, Information Security, or a related field
• Certifications preferred (e.g., CISA, CISM, CISSP)
• Knowledge and experience with governance frameworks (e.g., COSO, COBIT, NIST CSF)
• 5+ years of Security, Information Technology, and/or IT Audit experience

*MarineMax and its subsidiaries uses E-Verify, an Internet-based system, to confirm the eligibility of all newly hired employees to work in the United States. Learn more about E-Verify, including your rights and responsibilities.