Job Description

:Always there. Anywhere. That\'s us! We are committed to delivering inspired solutions for a better world. We care about our communities, we care about each other, and we care about showing up for those who need us. We value and encourage different perspectives and we have the courage to do the right thing, even when it\'s hard.The Senior Manager, Technology & Cybersecurity Audit is responsible for the development, maintenance, execution, and oversight of the risk-based Information Technology (IT) Internal Audit Plan and data analytics strategy. You will be responsible for managing the planning and execution of IT and cybersecurity audits, working in partnership with auditees to address risks and improve business processes focused on system and data integrity; for managing a team of IT audit professionals by assigning audits, reviewing work and providing feedback, developing and guiding staff, and evaluating performance; and for preparing reports and communications to senior leadership and the Board summarizing the results of work performed.This position represents an exceptional opportunity for an IT and cybersecurity professional keen to widen their expertise and impact in Internal Audit. The successful candidate will play a vital role in shaping the IT and cybersecurity posture of ATCO and partnering with our diverse business landscapeWhat Else You Get To Do:

• Develop and maintain the risk-based IT Internal Audit Universe, including identification and evaluation of risks related to cybersecurity; data governance, management, and classification; IT vendor and third-party risk management; system and application design, architecture, and implementation; artificial intelligence; cloud computing; and IT change management.
• Develop the risk-based IT Internal Audit Plan in consultation with the Director, Internal Audit, Chief Information Officer, and other key stakeholders across the business.
• Monitor completion of the IT Internal Audit Plan, including escalating risks of non-completion and identifying opportunities for enhancement to the Plan, as needed.
• Support the reporting of completion of the IT Internal Audit Plan to senior leadership and the Board.
• Assess and manage opportunities for coordination with other assurance providers (e.g., Internal Controls).
• Develop and implement an Internal Audit data analytics strategy and associated plan to improve the effectiveness and efficiency of Internal Audit procedures.
• Assess the risks faced by ATCO entities to achieve their business objectives and the governance, risk, and control processes in place to address those risks.
• Identify best practices, frameworks, and assessment criteria to evaluate IT processes / areas under review.
• Direct the planning, execution, and reporting of IT and cybersecurity audit and advisory engagements, including identifying and communicating exceptions, non-conformance, and opportunities for improvement of processes and controls to ensure risks are mitigated, including fraud risks.
• Direct the completion of risk assessments, audit programs, and audit procedures; review tests of controls; evaluate and document results; and make recommendations.
• Lead and assist in the performance of IT and cybersecurity audits, particularly large or complex audits.
• Prepare and review audit and advisory engagement reports to communicate the results of work performed, including aligning the results of work performed to the organization\'s strategy.
• Direct the follow up, testing, and reporting of committed management action plans to support ongoing continuous improvement.
• Liaise with business key stakeholders regarding the scope and status of Internal Audit engagements, developing relationships and participating in issue escalation related to ongoing engagements.
• Develop, update, and communicate Internal Audit policies, practices, procedures, and templates.
• Manage a team of senior-level IT Internal Audit staff, including managing work assignments, goals, and performance.
• Develop and deliver IT training for the Internal Audit team on IT requirements, data analytics, existing and emerging areas of IT and cybersecurity risk.
• Maintain the highest standard of professionalism and ethical integrity in compliance with the Institute of Internal Auditor (IIA) Standards and Code of Conduct.
• Assesses the impact of third-party service organization control reports on the IT Internal Audit Plan.

Who You Are:

• Bachelor\'s degree in computer science, Information Technology, or a related field.
• Certified Information Systems Auditor (CISA); Certified Information Security Manager (CISM); Certified Information Systems Security Professional (CISSP); and/or Certified in the Governance of Enterprise IT (CGEIT)
• Certified Internal Auditor (CIA) preferred
• 10+ years of experience in an IT security role, with demonstrated ethics and integrity management expertise.
• Strong understanding of IT governance frameworks (e.g., COBIT, ITIL, NIST), regulatory requirements (e.g., SOX, PIPEDA, PCI DSS), internal audit standards (e.g., IIA\'s IPPF), and industry standards (e.g., NERC CIP, ISO 27001).
• Extensive knowledge of technology and cybersecurity operations and how controls work in a less transparent and constantly shifting environment.
• Exceptional written and verbal communication skills and ability to present identified issues and facilitate problem resolution.
• Strong interpersonal skills with the ability to develop relationships effectively across a broad range of internal and external stakeholders across all levels of the organization.
• Proven leadership and management capabilities, including experience leading and developing high-performing teams.
• Strong analytical skills and problem-solving skills with the ability to see the big picture and interpret and assess the short- and long-term impacts of actions and strategies.
• Strong understanding and experience with Data Analytics (DA), Oracle, SAP, and Artificial Intelligence (AI).

What We Offer:

• A culture based on caring, integrity, agility, collaboration, and striving for excellence.
• Competitive compensation.
• Flex benefits.
• Tuition assistance program.
• Training and mentorship programs.
• Charitable donation matching.

We would like to thank everyone for their application; however, only those being considered for an interview will be contacted.Canadian Utilities is part of ATCO Ltd. ATCO delivers inspired solutions for a better world. We are a diversified global corporation with investments in the essential services of Structures & Logistics, Utilities, Energy Infrastructure, Retail Energy, Transportation and Commercial Real Estate. Learn more about how we build communities, energize industries and deliver customer-focused solutions like no other company in the world at www.atco.com.At ATCO, we support a diverse and inclusive environment that values the contributions and perspectives of everyone on the ATCO team. We believe the ATCO team is the foundation of our business and our most valuable asset across our global operations. Without each team members\' unique skills, strengths, and knowledge, we simply wouldn\'t be able to achieve our fundamental vision of delivering life\'s essential services to our customers around the world.ATCO is an equal opportunity employer, and we do not discriminate on the basis of race, religion, color, national origin, sex, gender, gender expression, sexual orientation, age, marital status, veteran status, or disability status.

ATCO