Executive Director, IT Audit

Your Team Responsibilities

The Executive Director, IT Audit is primarily responsible for planning, executing and supervising audit engagements. In addition, the position has responsibility to manage Sarbanes Oxley 404 (SOX 404) IT General Control assessment activities and other special projects that add value and contribute towards the achievement of organizational objectives.  

Your Key Responsibilities

• Serve as a key member of the global Internal Audit team providing leadership for the department’s overall responsibility for the identification of risks 

• Provide input on the annual audit plan and individual audit work programs 

• Manage and develop a global Internal IT audit team. Monitor developments in information security technologies, ensure effective knowledge and application of internal audit and risk management best practices 

• Responsible for innovations and the development of the Internal Audit methodology to improve the effectiveness of audit activities 

• Liaise with key stakeholders, including C-level executives to identify strategic business and IT initiatives and emerging risks. Solicit concerns and requests, incorporating such input into audit activity as appropriate 

• Work closely with product and technology process owners to analyze business activities, risks and threats; effectively assist in providing recommendations to remediate identified risks 

• Manage and supervise the annual IT SOX program to ensure the Company’s compliance with SOX 404. Collaborate with process owners to identifying risks, assist management in providing internal control recommendations; validate effectiveness of key controls 

• Perform technical risk assessments and audit engagements following the NIST CSF, SCF frameworks and the ISO 27001 standard 

• Responsible for the quality and timely execution of the annual IT audit plan and supervising simultaneous IT audit engagements. Specific responsibilities include (1) Identification of risk and scoping of audit engagement; (2) creation of audit work programs and procedures; (3) creation and documentation of audit work papers including report writing; (4) communication and reporting of audit results; (5) supervision and development of staff/resources (internal or external); and (6) presenting and reporting of results to management 

Your skills and experience that will help you excel

• 15+ years of audit and/or consulting experience across the information technology landscape 

• Bachelor’s degree in information technology, accounting or finance  

• Relevant professional certifications (CISA, CRISC, CISSP, CCSP, ISO 27001 LA) 

• Strong technical knowledge and experience across multiple platforms and technologies 

• Strong audit experience in IT general controls (change management, logical security and computer operations) and infrastructure security controls 

• Familiarity with NIST CSF, ISO27001 standard, COSO and COBIT frameworks of internal controls, IIA standards and practices  

• Experience with cloud computing and DevOps environments, including multiple cloud provider implementations 

• Strong written, oral communication, presentation and interpersonal skills to effectively share information and work collaboratively with business management, executive management, internal audit team members and other similar functions (i.e. Compliance, Enterprise Risk Management)  

• Problem Solving/Decision Making - has a multifunctional perspective and ability to objectively and critically identify emerging problems and translate the analysis into action 

• Customer centricity, Flexibility, Adaptability - adapt to changing circumstances, manage and update the audit process and approach when needed (i.e. project task teams) 

About MSCI

What we offer you

• Transparent compensation schemes and comprehensive employee benefits, tailored to your location, ensuring your financial security, health, and overall wellbeing.

• Flexible working arrangements, advanced technology, and collaborative workspaces.

• A culture of high performance and innovation where we experiment with new ideas and take responsibility for achieving results.

• A global network of talented colleagues, who inspire, support, and share their expertise to innovate and deliver for our clients.

• Global Orientation program to kickstart your journey, followed by access to our Learning@MSCI platform, LinkedIn Learning Pro and tailored learning opportunities for ongoing skills development.

• Multi-directional career paths that offer professional growth and development through new challenges, internal mobility and expanded roles.

• We actively nurture an environment that builds a sense of inclusion belonging and connection, including eight Employee Resource Groups. All Abilities, Asian Support Network, Black Leadership Network, Climate Action Network, Hola! MSCI, Pride & Allies, Women in Tech, and Women’s Leadership Forum.

At MSCI we are passionate about what we do, and we are inspired by our purpose – to power better investment decisions. You’ll be part of an industry-leading network of creative, curious, and entrepreneurial pioneers. This is a space where you can challenge yourself, set new standards and perform beyond expectations for yourself, our clients, and our industry.

MSCI is a leading provider of critical decision support tools and services for the global investment community. With over 50 years of expertise in research, data, and technology, we power better investment decisions by enabling clients to understand and analyze key drivers of risk and return and confidently build more effective portfolios. We create industry-leading research-enhanced solutions that clients use to gain insight into and improve transparency across the investment process.

MSCI Inc. is an equal opportunity employer. It is the policy of the firm to ensure equal employment opportunity without discrimination or harassment on the basis of race, color, religion, creed, age, sex, gender, gender identity, sexual orientation, national origin, citizenship, disability, marital and civil partnership/union status, pregnancy (including unlawful discrimination on the basis of a legally protected parental leave), veteran status, or any other characteristic protected by law. MSCI is also committed to working with and providing reasonable accommodations to individuals with disabilities. If you are an individual with a disability and would like to request a reasonable accommodation for any part of the application process, please email Disability.Assistance@msci.com and indicate the specifics of the assistance needed. Please note, this e-mail is intended only for individuals who are requesting a reasonable workplace accommodation; it is not intended for other inquiries.

To all recruitment agencies

MSCI does not accept unsolicited CVs/Resumes. Please do not forward CVs/Resumes to any MSCI employee, location, or website. MSCI is not responsible for any fees related to unsolicited CVs/Resumes.

Note on recruitment scams

We are aware of recruitment scams where fraudsters impersonating MSCI personnel may try and elicit personal information from job seekers. Read our full note on careers.msci.com