Director, Information Technology Audit Program Manager

Company: Fidelity Investments
Location: Merrimack
Posted on: May 26, 2025

Job Description:

Job Description: The Role Fidelity Fund and Investment Operations (FFIO) is seeking a passionate, driven, and experienced Director, Information Technology Audit Program Manager to join the team! In a leading role within Strategic Technology Programs, you will focus on the oversight of key risks, threats, controls, and other critical technology risk management functions supporting FFIO, as well as supporting the launch of innovative new products and offerings. You will provide independent and objective audit and advisory services that help FFIO manage risk, improve customer service, and enhance business performance. You will be responsible for working with technology teams, business leaders, Compliance and Legal to support positive change. The Value You Deliver As the IT Risk & Audit Program Manager you will be responsible for performing complex technology and/or business-integrated audits in support of FFIO businesses. Key areas of focus include developing hypotheses around risk and controls, providing input to the development of the integrated audit plan, and collaborating with application teams. Responsibilities include and are not limited to:

• Define, manage & implement the program scope, objectives and deliverables and ensure alignment with organizational goals.
• Performs and reviews audit test work including organizing and analyzing data, testing controls and documenting results.
• Lead technology risk assessments and issue mitigation/tracking for all aspects.
• Leverages audit automation tools in the evaluation of business operations and systems.
  • Understand workflows technology and end-to-end related processes, highlighting risks and controls embedded throughout the function.
    • Help the business build control programs that appropriately mitigate risk and meet corporate standards.
    • Partner with business and technology leaders to promote a collaborative environment that helps the business meet its goals while ensuring it stays within its risk tolerance.
    • Leveraging your experience in the financial services and/or the risk/compliance industry with an emphasis on building control programs.
    • Communicate program status, manage expectations and addresses any stakeholder concerns.
    • Responsible for tracking program deliverables, making informed decisions to identify, assess & mitigate any potential risk to the program success.
      • Applies strategic and data analytics concepts, principles, and techniques to more efficiently and effectively identify control deficiencies.
        • Drafts audit reports that provide a clear description of issues identified, related implications to the business or enterprise as a whole and management action plans to resolve the issues.
          • Builds deep working relationships with audit teams and clients. The Expertise and Skills You Bring
            • BA/BS/MS in Technology, Information Systems, Cybersecurity, or related field of study.
              • Any professional audit or information security certifications preferred (CIA, CPA, CISA, CISSP, SANS GIAC, etc.).
                • Cloud computing (AWS or Azure) related associate-level certifications preferred. Security or Professional cloud certifications would be a plus.
                  • 5-7 years of experience in performing and leading complex information technology audits, preferably financial services.
                    • Knowledge of cloud security, containerization, API, DevOps, secure software development, application security, databases, and operating systems. Ability to independently perform hands-on IT general controls testing across many of these areas.
                      • Knowledge of authentication, authorization, and credential management.
                        • Understanding of Artificial Intelligence, Machine Learning, Data Science and Robotic Process Automation.
                        • Knowledge of Industry standards, frameworks, and standard methodologies, such as NIST SP800-53, COBIT, SOC1, ISO27001 would be a plus.
                          • Understanding of security monitoring activities that enable vulnerability, internal/external threat monitoring, incident management and threat intelligence activities.
                            • Ability to work simultaneously on multiple tasks and lead team priorities and workload.
                              • Strong technical problem solving and data analytical skills. Scripting and automation experience would be a plus.
                                • Commitment to innovative, collaborative, and digital working style.
                                  • Strong presentation, written, and interpersonal communication skills.
                                    • Hands-on work style and 'can do' attitude with a strong desire to make things happen.
                                      • Curiosity and hunger to learn & excel. Note: Fidelity will not provide immigration sponsorship for this position. The Team You will be a part of the FFIO Technology Strategy team. We establish governance and provide oversight to enable FFIO technology platform leaders to create timely plans and execute against enterprise security, efficiency, audit & resiliency objectives. We have a relentless commitment to our internal & external partners.FFIO provides accounting and investment management support services for Fidelity mutual funds and other retail and institutional investment products. These services include calculating and distributing NAVs, distribution rates and yields for a wide variety of investment products, preparing fund financial statements, dividend estimates and tax returns, monitoring delivery of fund trades to custodian banks, processing corporate actions, collecting securities income on behalf of the funds, reconciling, reporting and moving money in support of fund shareholder transactions, and managing fund liquidity. Certifications: Category: Information TechnologyFidelity's hybrid working model blends the best of both onsite and offsite work experiences. Working onsite is important for our business strategy and our culture. We also value the benefits that working offsite offers associates. Most hybrid roles require associates to work onsite every other week (all business days, M-F) in a Fidelity office.

Keywords: Fidelity Investments, New England , Director, Information Technology Audit Program Manager, IT / Software / Systems , Merrimack, Northeast