Share this Job
Create Alert

IT Auditor, Lead - SAP

Date: Oct 21, 2021

Location: Chicago, IL, US

Company: James Hardie


IT Auditor,Lead

Chicago, IL


James Hardie is the #1 brand of siding in America. Globally, we have more than 4,900 employees and generate over $2.5 billion in net sales.  We invented fiber cement, and over 8 million homes later, we continue to set the standard for premium siding and trim.  Of course, to be the best, you have to work with the best.  That’s why we invest in more than just quality products; we also invest in our people.  We take pride in our employees and it’s clear that our employees take pride in working at James Hardie too. 



The IT Auditor, Lead works independently or as part of a team reporting to the Internal Audit Manager.  This position is responsible for the planning, execution and reporting of IT audits and special projects, and participates in projects associated with Section 404 of the Sarbanes-Oxley Act (SOX).  The Internal Audit function is responsible for assessing the reliability of financial reporting, compliance with laws and regulations, the efficiency and effectiveness of operations and safeguarding of Company assets. The function provides assurance to management and the Audit Committee that controls are in place and working effectively, performs fraud investigations and completes special projects assigned by management and the Audit Committee.  Internal Audit is responsible for identifying opportunities for operational and control improvements to mitigate risk, and improve the efficiency and effectiveness of processes across the Company’s global businesses. The Internal Audit Department reports directly to the Audit Committee of the Board of Directors, and administratively to the CFO. The Internal Audit organization is viewed as a training ground for high performing talent seeking a developmental assignment and exposure to the global operations of the Company.




Position Responsibilities

  • Leads IT risk assessment and develops the annual IT audit plan.  
  • Coordinates activities with third party IT audit resources (co-sourced partners) in planning and executing IT audits.  Provides Company knowledge and coordinates with management.
  • Develops risk-based integrated audit plans for review of financial and operational systems, general IT controls, information security, operating systems, applications, infrastructure and IT governance. 
  • Plans and executes IT and integrated audits.   Works independently or as part of a team (including co-sourced partners).  Develops risk based audit plans and presents the audit plans to management.  Coordinates audit activities with management prior to and during the audit.  Completes process documentation.  Develops audit work papers to document testing procedures and findings.  Identifies and communicates control issues, process inefficiencies or operational risks, and recommends appropriate solutions to address control weaknesses, enhance business processes and improve operational efficiency. Presents findings to management in writing (audit reports) and verbally.  Follows up with management on open issues.
  • Coordinates IT SOX control testing activities (IT general controls (ITGCs) and application controls) with the co-sourced partner and the external auditors.
  • Conducts IT and business process projects associated with SOX including: evaluating and testing key IT and business process controls; documents in work papers; reports findings to management verbally and in writing.
  • Supports IT in the design and implementation of IT controls around new applications, infrastructure and tools.
  • Collaborates closely with the Manager of IT Business Controls to support control activities.
  • Assists in the completion of projects assigned by management and the Audit Committee of the Board of Directors.
  • Assists in the design, documentation and implementation of the internal audit department policies and procedures.


The position responsibilities outlined above are in no way to be construed as all encompassing.  Other duties, responsibilities, and qualifications may be required and/or assigned as necessary.


Position Requirements


  • Understanding of internal control concepts and experience in applying them to plan, perform audits, and execute SOX projects. 
  • Hands-on experience assessing internal controls in accordance with auditing standards, COSO, COBIT, ITIL, and risk assessment practices.
  • Knowledge of key IT and information security topics such as cyber security, applications, infrastructure, systems implementations, cloud computing, IT general controls and SOC reports
  • Strong analytical, interpersonal, critical thinking, and written/verbal communication skills.  Ability to work independently, with limited guidance, and to work effectively on multiple projects.
  • Self-starter with a sense of urgency to get things done and meet tight deadlines.
  • Ability to understand complex IT and process issues and utilize educational tools.
  • Strong IT and financial analysis skills.
  • Prior experience managing or supervising projects (e.g. audits with 1-2 assistants) is preferred


Education and Experience

  • Bachelor’s degree in Accounting, Finance, or business-related field or Bachelor’s degree in Management Information Systems or other Information Technology-related field.
  • Four or more years of IT audit experience with increasing responsibility (Big 4 or equivalent preferred).
  • CISA preferred.  Certified Public Accountant (CPA) or Certified Internal Auditor (CIA) a plus.
  • Experience working with an IT audit function as a lead or senior, either as an employee or consultant/adviser is preferred.
  • Business/operations/manufacturing experience is preferred.
  • Knowledge of SAP required.
  • Ability to travel domestically and internationally up to 40%.



Nearest Major Market: Chicago

Job Segment: Audit, SAP, ERP, Accounting, Information Systems, Finance, Technology