Internal IT Audit Manager

Job ID: 520085

CRH is a leading global diversified building materials group, employing over 75,800 people at more than 3,160 locations in 29 countries. CRH is the leading building materials company in North America and the world. We manufacture and distribute a diverse range of superior building materials, products, and solutions, which are used extensively in construction projects of all sizes.

Job Summary

As an Internal IT Audit Manager, you will play a key leadership role in driving efficiencies, strengthening the technology control environment, and enhancing CRH's performance and growth through improved IT, cyber, and operational risk management. You will lead and develop audit teams while working across diverse companies and cultures within CRH worldwide, gaining exposure to a broad range of technology landscapes, digital initiatives, and business environments. To be successful in this role, you must be capable of assessing and improving complex IT and cyber-related processes spanning applications, infrastructure, security, data, and ERP environments while demonstrating strong analytical, communication, and people‑leadership skills. This position provides a unique opportunity to influence how technology risks are managed across the Group and offers a strong platform for career progression into more senior leadership roles within Internal Audit, Technology, or other business functions across CRH.

Job Location

This role is based at our corporate office in the Perimeter area of Atlanta, GA - hybrid work schedule

Job Responsibilities

• Lead and deliver the IT audit plan by scoping, executing, and reporting on risk‑based IT and cyber audits, ensuring high‑quality outcomes and timely delivery across global CRH businesses.
• Direct and develop audit teams, delegating effectively, removing obstacles, coaching for performance, and creating an engaged, high‑performing culture built on trust, collaboration, and continuous learning.
• Strengthen the technology control environment by assessing and improving complex IT, cyber, ERP, OT, and digital processes, providing pragmatic, commercially focused recommendations that support business performance.
• Drive functional projects and initiatives, contributing to technology‑enabled audit transformation, improving governance, control standards, and operational efficiency (including SOX, frameworks, and methodology).
• Build and manage strong stakeholder relationships across IT, Security, Finance and Operations, acting as a trusted advisor while maintaining independence and representing IA with credibility and professionalism.
• Promote innovation and sound decision‑making by anticipating emerging technology risks, leveraging data and audit technologies, and proposing new solutions that enhance IA effectiveness and business resilience.
• Support global mobility and on‑site engagement by travelling to CRH locations when required to lead fieldwork, participate in stakeholder discussions, and coach teams across diverse environments and cultures.

• Audit Methodology & Assurance Delivery: Proficient in risk assessment, scoping, process walkthroughs, control design evaluation, testing, data driven auditing, and delivering clear, commercially focused recommendations.
• Stakeholder Influence & Communication: Excellent ability to translate complex IT and cyber risks into clear, actionable messages for senior leaders, while confidently challenging and influencing decision makers.
• Leadership & Functional Impact: Strong capability to lead, coach, and develop high performing teams; drive cross functional collaboration; and contribute to advancing IA methodologies, governance standards, and technology risk maturity across CRH.
• Technology Enabled Auditing: Ability to leverage audit management tools, automation, analytics, and digital solutions to optimise audit efficiency and insights across global and diverse environments.
• Deep IT & Cyber Risk Expertise: Strong command of ITGCs, IT governance, cyber security principles, SOX technology controls, and industry frameworks (e.g., ISO 27001, NIST, COBIT) to evaluate and enhance control environments.
• ERP, Operational Technology & Core System Knowledge: Advanced understanding of SAP/SAP HANA, JDE, dispatch systems (e.g., JWS/Command Alkon), and industrial control/manufacturing systems, with the ability to link IT controls directly to business processes.
• Security Architecture & Technical Controls: Skilled in network/perimeter security, access management, secure development, cloud and virtualization environments, vulnerability management, penetration testing, and incident response practices.
• Bachelor's degree in Information Systems, Computer Science, Engineering, Cybersecurity, Finance/Business with IT focus, or related field.
• 7+ years progressive IT audit, technology risk, cybersecurity, or controls experience in professional services, industry, or public sector - including time at manager level or equivalent.
• A relevant professional certification such as CISA (preferred), CISSP, CISM, CRISC, ISO related certifications, or equivalent.
• Experience in SOX, corporate governance, internal controls, compliance, and substantive testing.
• You are willing to travel to CRH companies, with a travel component of around 30%. A full, clean driving license is essential to support travel requirements.
• Desirable
• Exposure to data analytics and the use of relevant tools including Alteryx, Power BI and Tableau.
• Practical experience in SAP or other ERP environments; experience with SCADA/OT systems and cloud platforms.

• Highly competitive base pay
• Comprehensive medical, dental and disability benefits programs
• Group retirement savings program
• Health and wellness programs
• An inclusive culture that values opportunity for growth, development, and internal promotion