Director of IT Audit

At Broadridge, we've built a culture where the highest goal is to empower others to accomplish more. If you’re passionate about developing your career, while helping others along the way, come join the Broadridge team.

The Director of IT Audit is a senior leadership role responsible for setting and executing the global technology audit strategy for a large, complex fintech organization. This leader will oversee risk-based audit coverage across technology, cybersecurity, engineering, infrastructure, and emerging technology domains, while serving as a key member of the Audit Leadership Team. The role requires a strong people leader who can elevate a distributed team, strengthen methodology and quality standards, and provide clear, credible insight to senior management and the Audit Committee. This is a high-impact opportunity for a leader who combines deep technical audit expertise with executive presence and a pragmatic, business-focused approach.

Key Responsibilities

• Lead the global IT audit function and develop a risk-based audit plan aligned to the company’s technology, cybersecurity, product, regulatory, and operational risk profile.

• Direct enterprise-wide technology risk assessments to identify priority areas for audit coverage, including emerging risks across cloud, AI/GPT/agentic technologies, blockchain, digital wallets, and digital currency.

• Oversee audits across core technology domains, including IT general controls, SOX readiness, infrastructure, identity and access management, application and product engineering, SDLC, cybersecurity controls, vulnerability management, incident response, disaster recovery, business continuity, data governance, emerging technologies and third-party risk.

• Ensure appropriate audit coverage of cloud environments, including security architecture, configuration, access, monitoring, resilience, and control effectiveness.

• Partner closely with Internal Audit leadership, business stakeholders, technology leadership, risk, compliance, and security teams to maintain coordinated, value-added assurance coverage.

• Deliver clear, concise, audit committee-ready reporting on significant technology risks, control issues, themes, and remediation progress.

• Set and continuously improve IT audit methodology, standards, and workpaper quality, with alignment to IPPF and internal quality assurance expectations.

• Drive a data-informed audit approach by leveraging analytics, AI, automation, and GRC tools to improve audit efficiency, insight, and coverage.

• Oversee issue tracking, validation, and closure testing to ensure management actions are sustainable, timely, and appropriately address root causes.

• Provide credible challenge and advisory insight on technology control design and operating effectiveness and regulatory readiness.

• Lead, coach, and develop a mixed-experience team across multiple geographies; establish clear expectations, strengthen performance management, and build succession capability.

• Promote consistency in audit execution, stakeholder engagement, and reporting across the team, while fostering a collaborative, inclusive, high-performance culture.

• Serve as a trusted advisor to the Chief Audit Executive and a visible member of the Audit Leadership Team, contributing to broader functional strategy, planning, and leadership priorities.

• The position has a global remit and leads a distributed team across the US and India.

Required Qualifications

• 15+ years of experience in IT audit, technology risk, cybersecurity, risk management, or related fields.

• Significant experience leading an IT audit, technology risk, compliance, or equivalent assurance function.

• Proven leadership experience managing and developing teams, including distributed teams across regions and cultures.

• Deep expertise across technology audit domains, including ITGC, SOX readiness, cloud, infrastructure, IAM, cybersecurity, SDLC, incident response, DR/BCP, data governance, and third-party risk.

• Strong understanding of modern technology environments, including AWS, Azure, and GCP.

• Familiarity with emerging technology risk areas such as AI/GPT/agentic systems, blockchain, digital wallets, and digital currency.

• Strong working knowledge of leading control frameworks and standards, including NIST CSF, COBIT, ISO 27001, SOC 1, and SOC 2.

• Exposure to relevant regulatory and industry standards such as HIPAA and PCI DSS.

• Demonstrated experience with GRC platforms and data-driven auditing techniques.

• Comfort working with tools such as Jira, Confluence, Archer GRC, and AutoAudit (Optial/Optra-style audit management tools).

• Executive-level written and verbal communication skills, with the ability to present complex issues clearly to senior management and the Audit Committee.

• CISA certification required or strongly preferred.

• Additional certifications such as CISSP, CCSP, CRISC, or CIA.

• Experience within financial services, fintech, payments, or other highly regulated, technology-driven environments.

• Experience scaling or maturing an IT audit function, including methodology enhancement and quality improvement initiatives.

• Background in cyber risk, cloud security, or technology control transformation.

• Experience using analytics or automation to modernize internal audit practices.

• Demonstrated success influencing senior technology and business stakeholders in a global organization.

#LI-CB1

#LI-Hybrid

We are dedicated to fostering a collaborative, engaging, and inclusive environment and are committed to providing a workplace that empowers associates to be authentic and bring their best to work. We believe that associates do their best when they feel safe, understood, and valued, and we work diligently and collaboratively to ensure Broadridge is a company—and ultimately a community—that recognizes and celebrates everyone’s unique perspective. 

Use of AI in Hiring 

As part of the recruiting process, Broadridge may use technology, including artificial intelligence (AI)-based tools, to help review and evaluate applications. These tools are used only to support our recruiters and hiring managers, and all employment decisions include human review to ensure fairness, accuracy, and compliance with applicable laws. Please note that honesty and transparency are critical to our hiring process. Any attempt to falsify, misrepresent, or disguise information in an application, resume, assessment, or interview will result in disqualification from consideration.