Application Technology Audit Manager - Full-Time

Job Description

Job Description

We are seeking an experienced Application Technology Audit Manager to lead the planning, execution, and reporting of audits focused on business applications, enterprise software systems, application security, change management, and the software development lifecycle (SDLC). This critical leadership role ensures that key applications driving business operations are reliable, secure, compliant with regulatory requirements (SOX, GDPR, PCI-DSS, etc.), and effectively controlled. You will manage a team of IT auditors while partnering closely with IT, application development, business units, and senior leadership to identify risks, strengthen controls, and drive continuous improvement in application governance.

Key Responsibilities

• Lead and manage end-to-end audits of business-critical applications, including core banking/ERP/CRM systems, custom-developed applications, cloud-based SaaS platforms, and mobile/web applications
• Assess application controls (input, processing, output), interface controls, segregation of duties (SoD), access management, change/release management, and data integrity
• Evaluate SDLC processes, including agile/DevOps environments, code review, testing, deployment pipelines, and release management controls
• Plan audit engagements: define scope, perform risk assessments, develop test programs, and allocate resources effectively
• Supervise, mentor, and develop a team of IT auditors and specialists, ensuring high-quality work and adherence to professional standards (IIA, ISACA, COBIT, NIST)
• Identify, document, and evaluate IT general controls (ITGCs) and application-specific controls relevant to financial reporting and operational integrity
• Perform data analytics and use audit tools to detect anomalies, fraud risks, and control deficiencies in application environments
• Prepare clear, concise audit reports and present findings/recommendations to senior management, application owners, and the Audit Committee
• Track and validate remediation of identified issues, providing timely follow-up and escalation where necessary
• Stay current with emerging risks in application technology (e.g., low-code/no-code platforms, AI/ML integrations, API security, microservices)
• Collaborate with external auditors, regulators, and third-party assessors during integrated audits and certifications
• Contribute to the annual IT audit risk assessment and planning, with emphasis on application portfolio risk

Qualifications:

• Bachelor's degree in Information Technology, Computer Science, Accounting, Finance, Information Systems, or related field (Master's degree preferred)
• 8+ years of progressive experience in IT audit, application audit, information security, or technology risk management
• 3+ years of experience leading/managing audit teams or complex engagements
• Strong knowledge of application controls, SDLC methodologies (Waterfall, Agile, DevOps), and change management processes
• Solid understanding of ITGCs, COBIT, NIST, ISO 27001, and relevant regulations (SOX 404, PCI-DSS, GDPR, etc.)

Preferred Certifications but not mandatory:

• Certified Information Systems Auditor (CISA) — strongly preferred
• Certified Internal Auditor (CIA)
• Certified Information Security Manager (CISM) or CISSP
• Certified Public Accountant (CPA) (advantageous)

Company DescriptionNuHire, LLC is a direct placement recruiting firm dedicated to helping candidates find long term permanent positions, NOT short term contracts. All the positions we represent are permanent positions with full benefits.

Company Description

NuHire, LLC is a direct placement recruiting firm dedicated to helping candidates find long term permanent positions, NOT short term contracts. All the positions we represent are permanent positions with full benefits.