Audit Manager Information Technology and Digital

Our Global IT & Digital Corporate Audit & Risk Management team brings its extensive experience and passion for technology to bear on helping Nike manage the many risks and opportunities associated with a large, global, IT ecosystem and a growing Digital business. As one of our Sr. Professionals, you'll partner with management across Nike to optimize risk, manage compliance, and seek new ways to leverage technology for strategic advantage. We evaluate and provide insight to balancing management of downside risks and lost opportunity risks. You'll join a dynamic internal audit team where collaboration and innovation are celebrated. We are a group of continuous learners and creative thinkers who love to challenge the status quo every day.

Audit areas may include information/cyber security, cloud security frameworks, data privacy, IT governance, portfolio management, digital experience development, technology operations, large system implementation reviews, agile and devops processes, and business continuity management / disaster recovery, among others.

You'll independently plan and lead complex strategic audits, manage auditors during fieldwork, review and approve other auditor's work, provide creative and strategic business oriented recommendations, and deliver executive level verbal and written communications to a variety of stakeholders across the company. You'll also provide pragmatic consulting services to management in order to guide the implementation of audit recommendations, improve risk management capabilities, and evaluate emerging risks to technology & digital planning and operations. Your work will be highly visible to NIKE executive management and the Board of Directors Audit Committee.

In this role you will be given the opportunity to learn about a wide range of Nike's business and how technology is a fundamental element of bringing innovation and inspiration to every athlete* in the world.


Qualifications
- Bachelor's degree with an emphasis in Information Systems, Computer Science, Electrical Engineering, or Business Administration
- Minimum of 7 years of progressively responsible experience in information systems auditing combined with IT, information/cyber security, software development or digital product management.
- CISA and/or CISSP certification preferred
- Working knowledge of various operating system platforms, relational database platforms, cloud computing and security concepts, enterprise network and systems architecture concepts and technologies, and security controls for internet facing e-commerce and social media applications
- Working Knowledge of SDLC and common IT project management methodologies and approaches.
- Experience auditing, implementing or operating general computing controls, including security, change management, systems development and operations, experience with SAP in these areas a plus
- Working knowledge of managed service risk and control concepts for cloud-based application services, hosted infrastructure and outsourcing services
- Working knowledge of information technology best practices and control frameworks
- Working knowledge of information security/protection concepts (C.I.A.)
- Experience with business process mapping and controls identification, design and implementation
- Strong business acumen
- Strong project management and team leadership skills
- Excellent executive verbal and written communication skill
- Ability to identify and assess business risks and work with clients to develop practical recommendations to mitigate those risks
- Ability to travel up to 20% (domestic and international)
- Ability to pass a 7-year background investigation

- Bachelor's degree with an emphasis in Information Systems, Computer Science, Electrical Engineering, or Business Administration
- Minimum of 7 years of progressively responsible experience in information systems auditing combined with IT, information/cyber security, software development or digital product management.
- CISA and/or CISSP certification preferred
- Working knowledge of various operating system platforms, relational database platforms, cloud computing and security concepts, enterprise network and systems architecture concepts and technologies, and security controls for internet facing e-commerce and social media applications
- Working Knowledge of SDLC and common IT project management methodologies and approaches.
- Experience auditing, implementing or operating general computing controls, including security, change management, systems development and operations, experience with SAP in these areas a plus
- Working knowledge of managed service risk and control concepts for cloud-based application services, hosted infrastructure and outsourcing services
- Working knowledge of information technology best practices and control frameworks
- Working knowledge of information security/protection concepts (C.I.A.)
- Experience with business process mapping and controls identification, design and implementation
- Strong business acumen
- Strong project management and team leadership skills
- Excellent executive verbal and written communication skill
- Ability to identify and assess business risks and work with clients to develop practical recommendations to mitigate those risks
- Ability to travel up to 20% (domestic and international)
- Ability to pass a 7-year background investigation


Back to top