Manager, IT Internal Audit jobs in United States
cer-icon
Apply on Employer Site
company-logo

Loews Hotels & Co · 15 hours ago

Manager, IT Internal Audit

positionNew York, NY
timeFull-time
remoteOnsite
seniorityMid, Senior Level
money$116K/yr - $145K/yr
date6+ years exp

Loews Hotels & Co is a hospitality company headquartered in New York City, seeking an IT Audit Manager to lead IT-focused audit endeavors. This role involves managing Sarbanes-Oxley compliance audits and collaborating with various stakeholders to ensure the integrity and security of the technology landscape.

Travel

Responsibilities

Perform annual risk assessments to develop the annual risk-based audit plan, evaluating the adequacy and operating effectiveness of internal controls by conducting audits of all business units (i.e., corporate/home office, hotel properties, and the shared service center), communicating audit recommendations to remediate audit issues or concerns identified, and providing IT advisory and assurance services to improve internal controls, operations, risk management, and compliance
Provide independent, objective IT assurance and advisory services to assess, evaluate, and validate the design and operating effectiveness of internal controls, while also adding value towards continuous process improvement opportunities within the organization
Lead and manage the planning, fieldwork, and reporting phases of IT compliance audits (including the review of quarterly IT SOX compliance certifications and completion of annual IT SOX compliance audits as required by SOX 302 and SOX 404, respectively) across the organization
Participate in the Annual Audit Risk Assessment and Enterprise Risk Management (ERM) processes, including understanding standard operating procedures and risk management policies, IT security and governance policies, interviewing key internal stakeholders, reviewing control self-assessments (CSAs) completed by hotel management, and analyzing financial data and information, which will help define annual risk-based audit plans
Share input and ideas towards developing audit risk and control matrices, mapping/documenting processes and procedures (e.g., flow charts and walkthrough narratives), and creating/enhancing audit methodologies and strategies
Perform detailed IT audit testing procedures during the fieldwork phase, while maintaining supporting audit workpapers, and thoroughly documenting any audit results and issues identified
Execute integrated audits consisting of financial, operational, IT, and compliance auditing procedures in collaboration with the Audit Manager
Clearly and timely communicate audit results and significant findings to the VP, Internal Audit, business and process owners, and senior management, and effectively advise on audit recommendations and corrective action plans to remediate issues
Assist with drafting formal audit reports and presentations that will be communicated to the Audit Committee, Executive and Senior Leadership team members and all other related key stakeholders
Partner with the IT Security and Governance team to assess and evaluate all IT general controls (ITGCs), as well as to complete special projects involving Cyber Security, Data Governance & Classification, Service Organization Controls (SOC) Reviews, System Implementations, Payment Card Industry Data Security Standards (PCI DSS) Compliance, etc
Collaborate with the IT Business Intelligence team to design data analytics for continuous monitoring and automated audit testing by leveraging available analytical tools and resources
Hire, train, coach, and develop new staff and senior internal auditors, as needed
Co-lead and manage internal and external parties (e.g., co-source partners) to conduct planned audits
Coordinate with external auditors for interim and year-end financial statement audits, as necessary
Attend all required training sessions and meetings
Perform other duties as assigned

Qualification

SOX ComplianceIT General ControlsCyber Security StandardsData Analytics ToolsInternal ControlsIT Security GovernanceCommunication SkillsInterpersonal SkillsLeadership SkillsFlexibility

Required

Bachelor's in accounting, finance, or IT related field required
A minimum of six years of external or internal audit experience with working knowledge of and skill in applying Generally Accepted Accounting Principles (GAAP), Generally Accepted Auditing Standards (GAAS), Institute of Internal Auditors (IIA) Standards, SOX Compliance Requirements, Cyber Security Framework Standards (e.g., National Institute of Standards Technology – NIST), PCI DSS, etc
Extensive understanding of internal controls and risks with the ability to recognize significant control issues and risk exposure across the organization
Experience assessing IT risks (including SOX), and evaluating the adequacy, design, and operating effectiveness of ITGCs
Strong understanding of IT security, governance, network, and infrastructure processes and procedures
Familiarity with utilizing data analytics tools to gain full coverage of audit population and automate auditing procedures
Proven track record of successfully managing and leading staff and senior internal auditors to effectively and sufficiently complete audit assignments and timely report on results
Excellent communication skills (verbal and written) in interactions with team members at all levels, including control or business process owners and senior management
Strong interpersonal skills with the ability to effectively develop and maintain positive working relationships cross-functionally with all levels of team members (e.g., Accounting, Finance, Operations, Compliance, Legal, HR, Loews Corporate Internal Audit, etc.) and external parties (e.g., co-source partners and external auditors)
Flexibility to work independently and in a team-oriented environment depending on assignment needs
Must be willing and able to travel up to 30% of the time, depending on business needs

Preferred

Master's degree in referenced fields preferred
Combination of Public Accounting (external audit) and Internal Audit experience preferred
IT audit experience at a company within the hospitality, restaurant, and retail industries, preferred
Knowledge of systems and applications such as, Oracle Enterprise Resource Planning (ERP), Workday Human Resources Information System (HRIS), Opera Property Management System (PMS), etc. with the ability to utilize system reports for audit testing and data analytics, preferred

Benefits

This is a bonus eligible position
Competitive health & wellness benefits, 401(K) & company match
Paid Sick Days, Vacation, and Holidays, Paid Bereavement, Paid Pet Bereavement
Training & Development opportunities, career growth
Tuition Reimbursement
Employee Hotel Rates, other discounts, perks and more

Company

Loews Hotels & Co

twittertwittertwitter
Glassdoor3.8
company-logo
Loews Hotels & Co was founded in 1960 and continues to own and operate hotels and resorts in the United States.
dateFounded in 1960
location
New York, New York, USA
people-size5001-10000 employees
web-link
https://www.loewshotels.com

Funding

Current Stage
Late Stage

Leadership Team

leader-logo
Alex Tisch
President & CEO
linkedin
leader-logo
Kristie Goshow
Chief Commercial Officer (CCO)
linkedin

Recent News

Dallas Innovates
Loews Hotels To Build Its Third Hotel in Arlington’s Entertainment District
2026-01-23
PR Newswire
Loews Hotels & Co Announces Americana by Loews Hotels in Arlington, Texas
2026-01-22
PR Newswire
Loews Hotels & Co Appoints Kristie Goshow As Chief Commercial Officer
2026-01-07
Company data provided by crunchbase