IT Audit Manager

Job Location: United States : North Carolina : Cary  



As part of the enterprise's "general contractor of choice" for risk management and control, ensures all business risks are anticipated, recognized, and appropriately managed before they can adversely affect the company. Reviews business processes IT applications, and enterprise-wide initiatives to ensure the use of compliant and best practice methods and efficient and accurate procedures. Prepares reports of audit findings for business managers, and proposes recommendations for changes as needed. Prepares reports for senior management on larger-scale audit assignments. Participates consultatively in implementing changes to the extent possible. Audit reviews may be conducted in specialized areas, such as cybersecurity, infrastructure, cloud, Sarbanes Oxley, general IT controls, or international operations, requiring specific knowledge pertaining to policies or regulations governing areas being audited.


  • Conducts or assists in the conduct of studies of limited-to-moderate complexity to assess the soundness, adequacy, compliance, and cost-effectiveness of the enterprise's operational and information systems' controls.
  • Reports on findings to business management and assists in compiling reports for senior management.
  • Devises and recommends remedies to faulty systems and procedures; to the extent possible, assists management in developing action plans to resolve control issues or risks.
  • May participate in and/or manage projects, completing assigned tasks and responsibilities within the assigned budget and timeline, and explaining variances.
  • May act as the primary client contact and maintain a positive ongoing working relationship with auditees



  • Has 5-8 years of relevant business experience.


  • Possesses intermediate-level understanding of IT general controls (security, change management, disaster backup recovery, data center, etc.), cybersecurity, cloud, privacy, and IT regulatory risks and controls.


  • Possesses fundamental understanding of multiple guidelines such as IIA, COBIT, NIST, SOX, and PCI DSS.


  • Possesses proficient understanding of auditing practices including sampling and testing methodologies, and risk management.


  • Demonstrated ability to influence business stakeholders as well as coach audit team members.


  • Strong written and verbal communication skills, including listening and interviewing skills.


  • Prefer candidate that has earned CISA, CISSP or CISM certification.


At MetLife, we’re leading the global transformation of an industry we’ve long defined. United in purpose, diverse in perspective, we’re dedicated to making a difference in the lives of our customers.



MetLife is a proud equal opportunity/affirmative action employer committed to attracting, retaining, and maximizing the performance of a diverse and inclusive workforce. It is MetLife's policy to ensure equal employment opportunity without discrimination or harassment based on race, color, religion, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity or expression, age, disability, national origin, marital or domestic/civil partnership status, genetic information, citizenship status, uniformed service member or veteran status, or any other characteristic protected by law.

MetLife maintains a drug-free workplace.

For immediate consideration, click the Apply Now button. You will be directed to complete an on-line profile. Upon completion, you will receive an automated confirmation email verifying you have successfully applied to the job.

Requisition #: 36221 

Share this Job

Other Locations For This Job