Senior IT Auditor

Sabre is a technology company that powers the global travel industry. By leveraging next-generation technology, we create global technology solutions that take on the biggest opportunities and solve the most complex challenges in travel. 

Positioned at the center of the travel, we shape the future by offering innovative advancements that pave the way for a more connected and seamless ecosystem as we power mobile apps, online travel sites, airline and hotel reservation networks, travel agent terminals, and scores of other solutions.

Simply put, we connect people with moments that matter.

The Internal Audit and Enterprise Risk Management team performs operational audits, has extensive purview over the Sarbanes Oxley testing program, and oversees the Enterprise Risk Management processes for SABRE Corporation. The function is part of SABRE Corporation’s broader Finance team, reporting to the Chief Financial Officer administratively and to the Audit Committee of the Board of Directors functionally.

Our vision is to proactively guide our Sabre business partners with innovative, best in class audit and risk management practices. Our strategy focuses on four pillars: 1) talent development, 2) modernization of our audit and risk activities, 3) providing a balanced portfolio of work which provides assurance and advisory services to SABRE, and 4) being a trusted advisor to management and the Board of Directors.

The Role:

As the Senior IT Auditor, you are an individual contributor on a team of audit and risk professionals who perform operational audits and SOX testing in a complex technology environment. This role is based in the Dallas-Ft. Worth metro area and reports to the Director of Internal Audit and Enterprise Risk Management in a flexible hybrid role.

You are an intellectually curious person who wants to work in a complex and evolving technology environment. In this role, you will have opportunities to expand your skills and grow a career at SABRE, where we make travel happen.

You can expect to work on the following activities:

1. 35-40% - Operational Audits

a. Actively participate in a dynamic risk assessment process which is used to select risk-based audit and advisory engagements;

b. Provide leadership on operational audits with a focus on quality and effectiveness which adheres to Sabre’s internal audit processes and to the updated Standards for the Professional Practice of Internal Auditing, as established by the Institute of Internal Auditors;

c. Partner with our automation and analytics Principal on data analytics opportunities for operational audits;

Establish productive business relationships across Sabre with leaders at all levels of the organization;

e. Communicate audit results to management and advise/educate management on control deficiency remediation and/or updates, when needed; and

f. Contribute to needed updates to the Sabre audit playbook.

2. 5-10% - Indirect People Management

a. Provide constructive feedback on project performance for both audit projects and other audit activities;

b. Contribute to the development and delivery of annual audit training for the internal audit team and others, as necessary, to improve skills and knowledge;

c. Collaborate with the Audit and Risk leadership team on people development and career development for auditors across the function.

3. 5% - As we grow our Enterprise Risk Management capability, you may be asked, on occasion, to participate in one or more of the following activities:

a. Participate in the ERM risk assessment process, ‘connecting the dots’ between ERM risks, operational audit opportunities, and technology;

b. Research risk topics, both internally and externally;

c. Assist in the assessment of risks within a provided framework/rubric; and

d. Provide ongoing business relationship development which monitors risks to the achievement of objectives

4. 35-40% - Sarbanes Oxley

a. Participate in annual SOX risk assessment and technology scoping activities;

b. Collaborate with the external auditor representatives during the SOX lifecycle on assigned processes (e.g., revenue recognition);

Testing, with a heavy focus on ITGCs, change management, and System Development Lifecycle;

d. Collaborating with process owners on updates to testing documentation, identification of key controls, and testing of those controls; and

e. Communicating testing results to management and advising/educating management on control deficiency remediation and/or updates, when needed.

5. 5-10%Special projects, investigations, training and development, and other administrative activities.

Qualifications and Education Requirements

• Four-year college degree
• A minimum of five years’ experience in the internal audit profession
• Hold an active certification as a Certified Information Systems Auditor (CISA), Certified Internal Auditor (CIA), or a similar designation which shows commitment to the profession
• Advanced knowledge of auditing practices and standards, trends, and best practices
• Advanced experience with internal control frameworks such as COSO, NIST (National Institute of Standards and Technology), COBIT, etc.
• Experience with cybersecurity concepts such as Identity Access Management, vulnerability management, software development lifecycle, security governance, etc.
• Advanced communication skills, both written and verbal; experience with writing detailed audit reports, delivering results to management at all levels of the organization
• Project management skills
• Experience working within a team to deliver a high-quality project
• Ability to travel up to 10% of the time, including internationally

Not required, but preference given to candidates with:

• Internal Audit experience in the technology industry
• Experience in data analytics and automation
• Information Security and Data Privacy experience

Sabre Offers The Following Outstanding Benefits

• Very competitive compensation
• Generous Paid Time Off (25 PTO days)
• 4 days (one day/quarter) Volunteer Time Off (VTO)
• 5 days off annually for Year-End Break
• We offer a comprehensive medical, dental and Wellness Program
• 12 weeks paid parental leave
• An infrastructure that allows flexible working arrangements
• Formal and informal reward, recognition and acknowledgement programs
• Lots of fun and engaging employee development events

Reasonable Accommodation

Sabre is committed to working with and providing reasonable accommodation to applicants with disabilities. Applicants applying for a Sabre position with a disability who require a reasonable accommodation for any part of the application or hiring process may contact Sabre at [email protected].

Determinations on requests for reasonable accommodation will be made on a case-by-case basis.

Affirmative Action

Sabre is an equal employment opportunity/affirmative action employer and is committed to providing employment opportunities to minorities, females, veterans and disabled individuals. EEO IS THE LAW

#LI-Hybrid#LI-KN1