Ceridian is a global human capital management (HCM) company headquartered in Toronto, Ontario, and Minneapolis, Minnesota, with operations across North America, Europe, Middle East, Africa (EMEA), and the Asia Pacific Japan (APJ) region.
Our brand promise – Makes Work Life Better™ – is the commitment we make to our employees, our customers and their employees, our partners, and to the communities we operate in around the world. As the pace of change accelerates, our modern technologies help our customers adapt, evolve, and win in today’s borderless, flexible, and skills-based work world.
Dayforce is Ceridian’s award-winning cloud HCM platform. Its single solution, single database, and single continuous calculation engine helps customers achieve increased efficiencies, productivity, and best-in-class compliance. Dayforce is the people platform for the global workforce.
Location: Work is what you do, not where you go. For this role, we are open to remote work and can hire anywhere in the United States
About the opportunity
The FULLY REMOTE Senior Manager, IT Audit will function as the global leader for Dayforce’s IT audit program, responsible for the execution of all IT-related audits for the company, as well as managing relationships with IT officers, senior leaders, and other key stakeholders.
What you’ll get to do
The Senior Manager, IT Audit will lead the enterprise-wide IT risk assessment process and annual IT audit plan development. He or she will oversee the execution of all IT-related internal audits and special projects, including (a) risk and control identification, (b) the review of process documentation and test procedures/results to ensure clear issue identification and report writing, (c) working with management to develop reasonable and sufficient action plans, and (d) overseeing business-unit management in tracking, remediating, and reporting of those action plans. IT-related internal audits include, but are not limited to, audits over cybersecurity, data/technology governance and classification, system implementations, and software/HCM industry security standards compliance.
- Data Analytics: Champions continuous control monitoring/improvement and dynamic risk assessment through audit technologies, including audit process automation, computer-assisted audit techniques, and data analytics.
- Relationship Management: Builds and maintains strong cross-functional collaborative relationships with company IT leadership, including the CISO, CIO, and other product technology and functional business leaders.
- Business/Industry Acumen and Associations: Remains current on industry trends (via involvement with pertinent industry associations and other education/training) to stay apprised of emerging issues/risks and identifying/leveraging audit best practices. Ensures the department is advised of key developments in all areas of responsibility, especially with a view as to the design and effectiveness of Dayforce’s IT environment.
- People Leadership: Provides guidance and direction for managers and staff to develop business and audit knowledge, setting clear expectations, providing timely and constructive feedback, encouraging career advancement, and setting the tone by enthusiastically facilitating knowledge exchange/transfer.
- Audit Committee Presentations: Assists Audit leadership with reporting to the Audit Committee.
- Encouragement to be the best version of yourself at and away from work:
- YOUnity diversity and inclusion programs
- Amazing time away from work programs
- Support for your total well-being through our Live Well, Work Well programs targeting all aspects of your life
- Recognition for your contributions through excellent pay, perks, and rewards
- Giving where you’re living: volunteer days, Dayforce sponsored events, and our very own charity, Ceridian Cares
- Opportunities to fuel your career growth through numerous internal and external programs and events
- Bachelor's degree in accounting, MIS, computer science, or other IT-related field; master's or other relevant advanced degree preferred
- A certified professional designation such as the CISA, CISSP, CISM, CRISC, CSSLP, or CCSP is highly preferred. A CPA or CIA is a plus.
- Minimum of 3-4 years of progressive management experience in an internal or external IT audit function, preferably within the software or human capital management (HCM) industry
- Expert understanding of IT security, governance, network, and infrastructure processes and procedures
- Broad working knowledge of technology platforms (including mainframe, midrange, client server, LAN/WAN, and web-enabled platforms) and processes (including information security, database design, software development and quality assurance methodologies, disaster recovery planning, and telecommunications)
- Intimate knowledge of security domains such as security and risk management, asset security, security architecture and engineering, communication and network security, identity and access management (IAM), security assessment and testing, security operations, software development security, and risk management/control frameworks, standards, and guidelines (e.g., NIST, ISO 27xxx)
- Proficient in Microsoft Office products (Excel, Access, PowerPoint, Word, and Visio)
- Familiarity with utilizing data analytics tools to gain full coverage of audit population and automate auditing procedures
- Outstanding communication skills, both oral and written, with a strong command of the English language
- The ability to partner effectively with multiple business/functional groups/leaders and to navigate the complexities of cross-border and diverse teams and engagements
- Highly motivated, proactive, critical thinker who can take a leadership role in a wide variety of assignments and be able to work independently with minimum supervision
- Ability to attract, manage, and develop top talent
- Audit experience in general technology: technical audits of applications, interfaces, system infrastructure, data processing, and ITGCs
- Audit experience in cybersecurity (readiness, penetration/vulnerability testing, and post-breach analysis) and/or information security [compliance, current and emerging technologies including cloud-computing (AWS, Azure), web development tools, management consoles, and network security]
- Prior experience working in and navigating a matrixed organization with a high level of collaboration skills across various cultures, global teams, and different geographical locations.
We thank all applicants in advance for their interest in this position; however, only those selected for an interview will be contacted.
About the Salary Ranges
Please note that the salary range mentioned in this job description should serve simply as a guide. The final compensation offered may vary based on a variety of factors, including bonuses and/or incentives, or a candidate’s experience, skills, and location. Our company is committed to providing a fair, equitable, and competitive package that reflects the value an individual brings to the organization.
The range provided is in United States Dollars.
Fraudulent Recruiting
Beware of fraudulent recruiting activity! If you are contacted by a Ceridian Recruiter or other Ceridian employee, you will be provided with an @ceridian.com email. If you are contacted by someone who uses any other email domain, despite their use of our company logo or company name in their social media handle/profile, the contact could be fraudulent. Please also note, Ceridian will not request or send money and/or a check at any time during the recruiting or hiring process, ask you to order any equipment or supplies, or ask for any sensitive personal data, such as National ID numbers, via email or phone. Sensitive personal data is only collected post-hire, via new hire forms directly in Dayforce. If you have been asked for any of the above, or believe you have been contacted by someone posing as a Ceridian employee, please refer to our fraudulent recruiting statement found here: https://www.ceridian.com/company/corporate/be-aware-recruiting-fraud.