Celestica has a great opportunity for an experienced and passionate IT professional who can effectively evaluate, advise and support the enterprise on IT risk and controls.
This IT Audit position is responsible for the timely execution of technology-based audits of a variety of systems, processes, and related activities, risk-based internal audits in accordance with the annual audit plan, as well as assisting with other audit matters and projects. This position will perform tests of the company’s internal controls and processes to ensure that they are adequate, functional and adhere to regulatory requirements, established organizational policies and procedures and acceptable industry practices. Work performed will include coverage of critical areas of technology including operating systems, networks, and application processing environments and information security, and identification and assessment of key risks and controls.
Execute technology audits, primarily in the areas of IT applications, operations, processes, infrastructure, information security, cyber security and emerging technologies
Assist in developing the Internal Audit technology audit plan, performing IT General Controls audits and reviews, evaluate and report on information technology (IT) security risks and controls, control descriptions, and provide IT risk reduction recommendations
Ensure compliance to policies, standards and procedures as per Celestica’s requirements
Research and influence policies and procedures changes
Act as a liaison to outsourced internal auditors; and on other assignments per management request
Execute ASCA (Application System Controls and Audibility) assessments prior to IT project deployment
Obtain and maintain business knowledge of processes and other functions to interpret and certify processes, including strong knowledge of Information Security concepts, ERP concepts, Supply Chain and Inventory Management processes
Able to handle difficult situations in a tactful and diplomatic manner with the ability to effectively resolve conflict
Four to five years of IT Audit, Security or IT operational experience in a manufacturing company (related IT operations experience will be considered);
Experience with SAP ERP and navigating SAP GRC;
Knowledge of information security management frameworks (ISO 27001/2, COBIT, ITIL, NIST Cybersecurity Framework, etc); the COSO 2013 framework and Sarbanes Oxley IT Controls;
Solid understanding of IT processes including operations, security, configuration, change, incident, problem and disaster recovery management;
Experience auditing large enterprise IT implementations with knowledge of project methodologies, project controls and ability to effectively work with cross-functional project teams; and Experience with data analytics.
Typical Education and Certification
Bachelor's degree in business, information systems, computer science or other related fields;
Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP)
Celestica (NYSE, TSX: CLS) is a US$5.6 billion global leader in the delivery of end-to-end product lifecycle solutions. Our customers trust us to deliver the most advanced design, engineering and manufacturing expertise for their highly sophisticated and complex products. From advanced medical devices to highly engineered aviation systems, to next-generation hardware solutions for the Cloud, at ...Celestica we manage the complexity for our customers and set the bar for quality and reliability in their markets. Our customer portfolio includes leaders in the enterprise computing, communications, aerospace and defense, industrial, smart energy, healthtech and semiconductor markets. Headquartered in Toronto, our global network spans 13 countries with 26,000 employees throughout the Americas, Europe, and Asia.