Description
Position Description

The Department of Internal Audit reports directly to the University of Colorado (CU) Board of Regents through its Regent Audit Committee to ensure the University receives high quality audit, investigative, educational, and consulting services across the entire CU System. The Audit Director is responsible for planning and executing assurance and advisory engagements, primarily in the information technology and security space, for the benefit of the university. 

The individual in this position: (1) possesses knowledge associated with the professional practice of internal auditing, including information systems auditing; (2) applies theories, methods, principles, and practices associated with professional internal auditing and information systems auditing; (3) performs duties associated with professional auditing that are predominantly intellectual and varied in nature, requiring creative, analytical, evaluative, interpretive, and/or critical thinking; and (4) exercises discretion and independent judgment, requiring only general supervision for day-to-day tasks.

This security-sensitive position requires a criminal and financial background check for initial appointments, or at any time when determined by the position’s supervisory authority to be in the best interests of the University.  In addition, this position requires adherence to the Code of Ethics promulgated by The Institute of Internal Auditors and the University’s Fiscal Code of Ethics.

This position reports to the Associate Vice President of Internal Audit (AVP) and is exempt from the State of Colorado Classified Staff System. 

COVID-19
The University of Colorado has a requirement for COVID-19 vaccinations and full completion of the attestation form within the first 30 days after hire date.  Information regarding this requirement, and exemptions can be found at https://www.cu.edu/vaccine-requirement https://www.cu.edu/vaccine-requirement

Duties and Responsibilities

Duties and responsibilities of the position include, but are not limited to:

Functional and Technical Project Management

• Responsible for supporting the annual risk assessment and specific audit planning processes.
• Supports AVP in periodic reassessment of the annual audit plan for emerging risks and relevance/timing of planned projects.
• Executes the audit plan through timely project completion.
• Responsible for looking beyond project risk to higher level program and enterprise risk to understand the implications across the university.
• Performs a high-level analysis of risk that translates to actionable recommendations for stakeholders.
• Untangles highly complex issues and risk to the ultimate root cause.
• Leverages projects and stakeholder needs into projects that reduce university’s overall risk profile and enable achievement of strategic goals and objectives.
• Produces executive-ready work product with minimal revision necessary.
• Represents the concerns and perspectives of Internal Audit Department at interdepartmental and/or intercampus meetings.

Department Planning and Administration

• Sets a strong example for the team to engage in critical thinking and high-level root cause analysis.
• Effectively communicates the department strategy and translates it into tactical execution of key projects.
• Supports the AVP in alignment and achievement of departmental strategic goals and objectives.
• Actively leads and supports the departmental strategic initiatives and projects.
• Supports the department budgeting process, leads in stewarding department and university resources.
• Identifies opportunities for team development and stretch goals for team members.
• Supports recruiting efforts within the department.
• Uses appropriate methods and a flexible interpersonal style to help build a cohesive team, facilitates the establishment of team goals and tracks team progress to ensure goals are met.
• Supports and participates in the development of the agendas and related materials for the Regent Audit Committee meetings.
• Has oversight responsibilities for the coaching, training, performance evaluation and professional development of assurance team members.
• Proactively and effectively manages interpersonal conflict, reaching positive and productive solutions that are focused on professional growth and development, as well as successful project completion.

Communication & Collaboration

• Works collaboratively across the Internal Audit team, fostering creativity, continuous improvement, and a strong sense of community.
• Initiates and maintains strategic relationships that remove barriers across the organization and support departmental goals.
• Acts as an ambassador for Internal Audit, positively influences the business and risk management functions in terms of the value Internal Audit can bring.
• Stays active in the Internal Audit community to keep abreast of innovative practices and emerging risks.
• Encourages high level of collaboration across all levels of stakeholders, effectively networks throughout the university.
• Negotiates to allow for win-win resolutions to difficult issues with stakeholders.
• Clearly and succinctly conveys information and ideas to individuals and groups in a variety of situations; communicates in a focused and compelling way that drives others’ thoughts and actions.
• Uses appropriate interpersonal/communication styles and understanding of key drivers to create and gain buy-in from stakeholders.
• Coordinates with external auditors and provides support on external audits as appropriate.

Education and Counseling

• Provides advice, counsel and education to the university community through such mechanisms as workshops, committee participation, and consultation projects, to enhance the university’s understanding of sound business practices that improve process quality, risk mitigation, and university objective achievement, and strengthens the control environment.
• Establishes role as subject matter expert by stakeholders and university executive management.

Continuous Improvement and Adaptability

• Develops and improve knowledge and skills outside of core technical area, related to the theories, methods and principles of the profession of internal auditing, and knowledge of the University environment.
• Shares knowledge by preparing and delivering development sessions, counseling and education to department staff, peers and others.
• Critically evaluates Internal Audit processes for continuous improvement opportunities.
• Supports the Quality Assessment and Improvement Program.

Who we are and What we offer

Who we are: System Administration, which also houses the Office of the President, is located in the uptown neighborhood of Denver with a few smaller offices located on the campuses. However, this position is located in Denver, and requires a hybrid work schedule. Many of our departments support the educational and research missions of the four University of Colorado campuses, but System Administration is not considered a campus. We provide diverse opportunities for professional development, innovation, and collaboration with talented staff and faculty.  Learn more about CU System Administration.

What we offer:

Salary: The anticipated hiring range has been established at $140,000- $160,000

The salary of the finalist(s) selected for this role will be set based on a variety of factors, including but not limited to, internal equity, experience, education, specialty and training. The above salary range (or hiring range) represents the University’s good faith and reasonable estimate of the range of possible compensation at the time of posting.

Benefits: The University of Colorado offers an excellent benefits package including:

• Medical: Multiple plan options
• Dental: Multiple plan options
• Additional Insurance: Disability, Life, Vision and Wellness
• Retirement 401(a) Plan: Employer contributes 10% of your gross pay
• Paid Time Off: Accruals over the year
  • Vacation Days: 22
  • Sick Days: 15
  • Holiday Days: 10
• Tuition Benefit: System employees have the benefit on all campuses 
• ECO Pass: RTD Bus and light rail service
• Additional Perks & Programs: Click here to access a few more Perks and Programs

Click here to access our Total Compensation Calculator to see what your total rewards could be at CU. This position is a University Staff position.

Additional taxable fringe benefits may be available.

More information on benefits programs, including eligibility, is available at www.cu.edu/employee-services/.

Knowledge, Skills, and Abilities

To be successful in this position, candidates will need the following:

• Advanced knowledge associated with the professional practice of information technology and systems auditing
• Knowledge of higher education organizations, fiscal management, and governance
• Knowledge and understanding of the International Standards for the Professional Practice of Internal Auditing, as promulgated by the Institute of Internal Auditors, and ISACA’s Information Technology Assurance Framework
• Collaboration skills, including the ability to work with others from different areas and backgrounds to reach a common goal 
• Computer skills, including the ability to utilize Microsoft Office programs (i.e. Word, Excel, PowerPoint, Outlook, etc.) and learn and experiment with new software and systems
• Interpersonal skills, including the ability to facilitate interaction, communication, and teamwork between others
• Oral, written, and listening communication skills, including the ability to accurately interpret what others are saying and convey messages, information, concepts, and details accurately and clearly
• Organizational skills, including the ability to set and meet goals and deadlines, manage appointments, create schedules, coordinate and facilitate meetings, and make decisions 
• Analytical and problem-solving skills, including the ability to examine and summarize complex data and trends to resolve issues, produce results, and draw broader conclusions (i.e., business acumen)
• Ability to follow and uphold ethical guidelines, standards, and integrity and adhere to core character values of trustworthiness, respect, responsibility, fairness, caring, and good citizenship
• Broad base of general business and university knowledge, subject matter expertise in at least two areas relevant to IT and information systems audit.
• Ability to simultaneously direct multiple audits or special projects.
• Demonstrates strategic level understanding of the university risk universe, and value and impact of all projects on the audit plan. 
• Understands university’s strategic goals and is able to tailor project objectives, scope, and programs to address those goals.
• Demonstrates executive presence when presenting to university leadership; able to effectively communicate with all levels of relevant university personnel. 
• Exercises professional judgement and maintains confidentiality of sensitive and privileged information and communications
• Able to handle complex problems or challenging situations at a strategic level.

 

Qualifications
Minimum Qualifications:

Please ensure your resume includes any and all relevant experience to be accurately assessed against these qualifications.  You must meet all minimum requirements listed at the time of application to be considered for this role.

• A Bachelor Degree or advanced degree from an accredited university of higher education in a field of study relevant to information management, information/computing science or engineering, business or finance, mathematics or numerical analysis, or similar or equivalent professional experience (the educational requirement may be substituted by professional experience on a year for year basis).
• Seven (7) years of audit-related or business experience related to any of the fields specified in the degree requirement including:
  • Six (6) years of project management and team leadership experience
• An active Certified Information Systems Audit (CISA) certification
Local and regional travel to CU campuses. Travel is required on an “as needed” basis.Proficiency with the use of Microsoft Office programs and data analytics tools

Preferred Qualifications

• An advanced degree in a relevant computing or business field, or in any field that enhances analysis, communication, or interpersonal interaction
• Ten (10) years’ professional experience as listed above
• Professional experience in higher education, research institutions, technology management, or business analysis
• Additional audit, IT-Audit, business, security, management, or technical certifications relevant to audit activity
• Experience with policy development, management, compliance, and research
• Experience with relevant industry, security, privacy, or compliance frameworks and standards such as COBIT, HIPAA, FERPA, ITIL, PCI, etc.
• Experience providing relevant technical guidance from organizations promoting technology best-practices or standards for IT security, privacy, operations, and service management such as NIST, ISO, OWASP, CIS and others
• Extensive experience or skills in any IT technological role such as program management, operations, security, data management or analysis, or application development
• Current experience in data analytics and visualization, business intelligence, data mining and related data science fields of study (practical experience with applications such as ACL, Tableau, SQL Server, SAS or similar is beneficial)
• Project and team management experience
• Certified Fraud Examiner (CFE), Certified Internal Auditor (CIA), or relevant audit-related certification.

Job Category: Audit and Legal
Primary Location: Denver
Schedule: Full-time
Posting Date: Apr 22, 2022
Unposting Date: Ongoing