Director, IT Internal Audit

Overview

Impact the Moment

McGraw Hill is a diverse and inclusive company that believes we can change the world by leveling the playing field and giving every learner an equal opportunity to succeed. We create best-in-class, next-generation learning platforms which are used by millions of students and educators worldwide. Our goal is to accelerate student success through intuitive and effective learning experience, to continually reimagine the way our customers teach and learn, simplifying the path to a better education for all.

McGraw Hill is a leading provider of digital and print educational materials. Internal Audit is a small independent function that provides management and the Audit Committee with objective, value-added services by assessing risks, evaluating and championing internal controls and providing related advice associated with the Company’s strategic, operational and financial objectives.

How can you make an impact?

The IT Internal Audit Director at McGraw Hill is a newly created hands-on audit role reporting directly to the SVP, Internal Audit. The position is responsible for developing and maintaining the technology audit and risk universe and annual plan, delivering technology related audit projects, overseeing co-sourcer when utilized, and partnering with McGraw Hill units including Global Technology Services and the Digital Platform Group to remain abreast of risks and developments as well as provide advisory services, as needed. This is a remote position open to applicants within the United States and requires up to 10% annual travel for the year.

What you will be doing:

• Manage the global technology audit universe and update risk assessments and annual audit plan, as well as all aspects of technology audits in range of areas such as governance, infrastructure, applications, implementations, security, and IT general controls
• Execute, tailor, and deliver effective audit projects according to standards, including assessing technology risks and controls and documenting key audit deliverables such as any announcements, narratives/process flows, flowcharts, risk control matrices, test plans, and reporting on results
• Craft clear, impactful observations and recommendations and present these to all levels of management as well as proactively follow up with responsible parties to ensure management action / remediation plans have been addressed
• Build and maintain ongoing, trusted relationships with IT and Finance stakeholders, liase with external auditors on projects and requirements, and oversee co-sourcers and any subject matter experts utilized on projects
• Stay current with evolving audit, industry, technology and regulatory trends/changes, and incorporate accordingly into audit process
• Carry out special projects and post-mortems as needed
  
  

You should apply if you have:

• A bachelor’s degree in computer science or related discipline
• Certified Information Systems Auditor (CISA) or Certified Internal Auditor (CIA) (preferred)
• Minimum 10 years technology audit experience (internal or external)
• Strong technical knowledge of technology risks, controls, and processes
• Solid project management, business process and audit skills
• Extensive experience with audit tools, sampling and applying data analytics techniques during projects
• Critical and strategic thinker with ability to understand new areas and processes quickly, distill risks, problem solve, flex, and recommend practical and effective. Ability to follow through and deliver while juggling multiple and competing priorities
• Knowledge of common risk standards and frameworks, such as Sarbanes-Oxley Act (SOX), COSO, COBIT, NIST, PCAOB, SOC-1, SOC-2, The Institute of Internal Auditors (IIA’s) code of ethics, and related technology frameworks, etc
• Technical knowledge of ITGCs, ITACs, financial and customer-facing applications, deployments, interfaces, data management, cloud governance and information security and privacy. Awareness and knowledge of emerging and other technologies such as RPA, process mining, LLMs/AI
  
  

Why work for us?

The work you do at McGraw Hill will be work that matters. We are collectively designing content that will build the future of education. Play your part and experience a sense of fulfilment that will inspire you to even greater heights. If you are curious, open to new ideas and ready to make a difference, we want to talk to you.

The pay range for this position is between $124,350 - $200,000 annually; however, base pay offered may vary depending on job-related knowledge, skills, experience, and location. An annual bonus plan is provided as part of the compensation package, in addition to a full range of medical and/or other benefits, depending on the position offered. Click here to learn more about our benefit offerings

McGraw Hill recruiters always use a “@mheducation.com” email address and/or from our Applicant Tracking System, iCIMS. Any variation of this email domain should be considered suspicious. Additionally, McGraw Hill recruiters and authorized representatives will never request sensitive information in email.

47662