Title:  Manager, IT Audit

MISSION / SUMMARY:

The Internal Audit Department and team are very dynamic and in high demand.  This team collaborates across the entire organization and provides guidance and support to our business partners. The Department delivers independent, objective assurance and advisory/consulting services designed to add value and improve operations and financial position.  This role has the opportunity to create long-term, sustainable changes that will move the organization forward in supporting the Company’s goals.  Internal auditors will gain an in-depth, up-close understanding of the operations, processes, policies and procedures of Graphic Packaging International. Partnering with management, they will provide invaluable operational knowledge and industry insights.

JOB FUNCTIONS: Job functions include, but are not limited to the following. 

The Manager, IT Audit Americas is responsible for delivering independent, objective assurance and advisory services in the Americas with a focus on IT systems, security, and controls.  This position will add value by enabling the organization to comply with financial reporting requirements and corporate policies while providing thought leadership to business partners and stakeholders.  This includes assuring Graphic Packaging is positioned to achieve its strategic objectives by promoting sustainable, efficient and effective risk management practices and championing compliance with all relevant business requirements.

This position will also be responsible for planning, performing, and reporting on audit activities related to the Company’s Americas system transformation including implementation review, audit support, and control design and verification procedures

PRIMARY RESPONSIBILITIES are, but not limited to the following:

• Support IT Governance, Risk Management, Compliance and Audit strategies throughout the Americas operations
• Plan, perform and report IT audits and reviews designed to analyze, assess, and strengthen the company’s digital landscape and internal control environment
• Specific areas of audit focus include, but are not limited to, IT governance, IT general controls, IT project management, IT infrastructure management, software development lifecycle, application security, application controls, emerging information security and cybersecurity risk, cloud architecture, and controls related to applications hosted in the cloud, data lifecycle management, data privacy, supplier risk management, disaster recovery, and business continuity
• Support technology audits and the IT SOX compliance program, including the review of walkthroughs, testing of the operating effectiveness of Americas IT General Controls / IT Application Controls, and reporting of results
• Provide acquisition support by assisting IT personnel through the documentation, design, and remediation of internal controls to align with company policy and adhere to public company regulatory requirements for recently acquired businesses and systems
• Advise IT project teams on control considerations during system implementations and digital transformation initiatives
• Support the broader Graphic Packaging Internal Audit Team through the sharing of best practices, assist in obtaining system documentation in support of various audit activities, contribute to the data analytics use case pipeline as well as providing strong technical knowledge of IT systems and configurations
• Provide the technical understanding of system configurations as it relates to the design, development, and testing of automated controls
• Proactively collaborate with IT process control owners, IT compliance teams, and external parties to support the internal control testing and remediation activities
• Track IT audit findings to closure with verification for high-risk findings
• Identify areas for emerging IT risk and assist in developing the annual audit plan
• Assist internal audit continuously improve internal audit approaches, tools, methodology and productivity
• Establish yourself as a trusted advisor to IT leadership and provide advice over relevant IT regulatory considerations
• Partner with and manage co-source Internal Audit services
• Coordinate with and support external auditors

JOB REQUIREMENTS:

• Minimum of a bachelor’s degree in Computer Science, Information Systems, Engineering, Information Technology, or Management Information Systems
• 5 years of information technology experience
• Successful track record in building relationships and networks with a broad array of stakeholders
• Proven experience in the design, testing, and controls implementation (ITGCs, application controls, IT dependencies) for ERP systems (preferred S/4 HANA, SAP ECC, TBOX or QAD)
• Experience working with and assessing system implementations and transformations
• Experience assessing segregation of duty violations, critical access reviews, and associated mitigated controls
• Proficient in written and spoken English
• Confident working with individuals across various levels of the organization
• Effective time management, including independent planning and decision-making, identifying priorities, and bringing projects to successful and timely completion with a focus on high standards and quality
• Strong understanding of audit and documentation requirements
• Experience with a U.S. public company environment and strong internal controls (SOX) experience
• Available for travel, as needed, expected to be around (10%-25%)
• ERP experience particularly in SAP (ECC and/or S4 HANA) and TBOX or QAD (preferred)
• Manufacturing, Packaging, or other related experiences (preferred)
• IT related certification (e.g. CISA, CISSP, CISM, CRISC) (preferred)
• Experience with Audit, Compliance, & Risk Management software Audit Board (preferred)
• Prior people leadership experience and/or the desire to professionally develop to take on additional responsibility (preferred)

SCHEDULE DEMANDS:

• General schedule is an 8-hour M-F assignment, however, employee must be willing to work alternate schedules occasionally; that may include early mornings, nights, and/or weekends and be punctual while doing so. 

PHYSICAL DEMANDS:

• Sitting or standing for extended periods of time up to 8-hours.
• Occasional Lifting up to 20 lbs.
• Reading computer screen or other electronic devices.
• Use of various office hand and electrical tools or equipment.

Required Experience

At Graphic Packaging International, we produce the paper cup that held your coffee this morning, the basket that transported those bottles of craft beer you enjoyed last weekend, and the microwave tray that heated your gourmet meal last night. We’re one of the largest manufacturers of paperboard and paper-based packaging for some of the world’s most recognized brands of food, beverage, foodservice, household, personal care and pet products. Headquartered in Atlanta, Georgia, we are collaborative, diverse, innovative individuals who create inspired packaging while giving back to our communities. With over 25,000 employees working in more than 130 locations worldwide, we strive to be environmentally responsible in our industry and in the communities where we operate. We are committed to workplace diversity and offer compensation and benefits programs that are among the industry’s best to reward the talented people who make our company successful. If this sounds like something you would like to be a part of, we’d love to hear from you. Learn more about us at www.graphicpkg.com.

Inspired Packaging. A World of Difference.

Graphic Packaging is an Equal Opportunity Employer. All candidates will be evaluated on the basis of their qualifications for the job in question. We do not base our employment decision on an employee's or applicant's race, color, religion, age, gender or sex (including pregnancy), national origin, ancestry, marital status, sexual orientation, gender identity, genetic identity, genetic information, disability, veteran/military status or any other basis prohibited by local, state, or federal law. Click here to view the Poster, EEO is the Law.