General Electric Chief Audit Executive, GE Digital Technology in Boston, Massachusetts
Job Description Summary
Based from one of GE's major US operations and reporting to the GE Vice President Chief Audit Executive (GECAE), the Chief Audit Executive, Digital Technology (CAE-DT) will design, build and lead a data-driven, modern audit function, grounded in strong technical expertise for all GE business units focused on information technology, privacy and cybersecurity areas.
GE is in the midst of a significant and public transformation of its portfolio, leadership, operations and culture. One of the top priorities within this transformation is the Internal Audit function. GE is currently evolving the function, focusing more on the development of deep, data-driven, modern audit expertise and experience to serve as a true business partner for the audit committee and executive leaders, while still maintaining its commitment to talent development, both within and outside the function.
A key dimension of this role is focused on leadership both inside and outside all GE Business Units, including:
Partnering effectively with GE CAE, CIO, CISO, CTO and Digital Technology executives, and other Business Unit CAEs on implementing solutions for mitigating risk and prioritizing initiatives to ensure focused execution.
Ensuring healthy, collaborative relationships between corporate and the Business Unit to capitalize on capabilities and expertise and internal audit rigor.
Collaborating with peer Business CAEs, GECAE, and key stakeholders to set strategic direction for the new Internal Audit function.
With a LEAN mindset, build and lead the IT audit portion of Internal Audit team for all GE Business Units that supports the strategy set out by the Corporate CAE & Audit Committee.
Develop and execute risk-based, business-wide audit plans covering information technology, privacy and cyber risks for all GE Business Units that clearly define the objectives and scope of each review, employing critical thinking and appropriate testing methodologies.
Partner with the Business CAEs on the completion of integrated audits specified in the Internal Audit Plan.
Deliver audits in highly technical areas of current/emerging technologies including cloud, security, distributed computing, IoT, Zero Trust Networks, High Value Asset Protection.
Stay abreast of new and emerging regulations & trends that impacts information technology controls and rapidly adjust audit plan or procedures accordingly.
Scope and deliver risk-based audits, including communicating findings with clients in a clear and timely manner; writing audit reports that are meaningful and comprehensive (yet easy to understand); working with management to develop action plans to remediate findings and address areas for improvement; and track corrective actions through to completion.
Develop and maintain strong relationships with each, Business CAE, Business Unit CIO, CISO, CTO, SOX COE, and senior DT executives, advising them (and providing training) on how to identify, assess and mitigate risks in their environment and ensuring the Audit is aware of changes in business activities and objectives, and a necessary Audit response is developed.
Regularly communicate business risks and opportunities to the CAE, Business unit CEO, Business unit CIO and other senior management members along with appropriate recommendations.
Partner with the Business unit CISO to advise on the internal policies and procedures definitions that support an effective and efficient system of internal controls.
Participate in activities related to new systems development, new enterprise level technology adoption, new products, mergers, divestitures and acquisitions, and analyze new policies to ensure that control considerations are evaluated in the early stages of these activities.
Provide control consulting services to management to assist in redesign efforts that improve the control environment.
Seek, learn and use new audit techniques, as necessary, and share knowledge with internal customers.
Manage testing of the business’ internal IT controls over all business functions. Communicate deficiencies and the status of remediation efforts to company management and the Audit Committee on an ongoing basis.
Coordinate efforts with, and provide support to, the external audit firm to ensure coverage.
Attract, develop and retain a high performing Internal Audit team. Mentor, coach and teach, as needed, including developing people for career opportunities and advancements within General Electric, including, but not limited to, the IT technological areas. Develop, update and maintain talent development, training and succession plans for the department.
Drive continuous improvement mindset in the audit function, including identifying and integrating best practices; Identify specific actions to improve the efficiency and effectiveness of Internal Audits.
Achieve annual goals and budget targets by effectively managing resources and stakeholder requirements.
YEAR ONE CRITICAL SUCCESS FACTORS
Develop an understanding of the General Electric business, the strategy and vision for future to ensure that the Internal Audit department is aligned as it begins its transformation.
Build a strong, technical, data-driven modern audit function and team covering all GE Business Units using LEAN principles and standard work.
Gain credibility with the Corporate CAE, Business Unit CIO, Business Unit CISO, Business Unit CTO, senior DT leadership, other business unit CAE peers and team out of the gate; personify a positive attitude and desire to contribute to the success of General Electric.
Broaden the capabilities and deepen audit expertise of the internal audit function, while maintaining the value add to the organization.
Build and staff a technical internal audit team supporting enterprise-wide technology risk assessment and management.
PROFESSIONAL EXPERIENCE/SUCCESS PROFILE
Bachelor's Degree in Computer Science or in "STEM" Majors (Science, Technology, Engineering and Math) or Business Administration with a minor in Computer Information Technology is preferred.
Minimum of 15 years of professional experience in IT Governance, IT Risk, IT Audit, IT Operations or related fields, preferably with a Fortune 1000 companies or Big 4 assurance organization.
CISM, CISA, CISSP, CRISC designation or other relevant certification is desirable.
Understanding of regulatory and external requirements as they relate to IT, privacy and cybersecurity for regulations such as DFARS, CMMC, FISMA, HIPPA, GDPR, NERC-CIP and SOX.
Experience using some of the industry standards/framework, such as NIST 800-53, NIST 800-171, NIST Privacy Framework, CSA CCM, ISO 27001, ITIL v3, COBIT and FAIR is desirable.
Knowledge of IT Operational Functions including IAM, Asset Management, Cybersecurity, Data Privacy.
Proven ability to handle scale, change agenda, pace and overall complexity.
Track record of building / transforming an audit function to drive business strategy.
Track record of working alongside business leaders, positioning internal audit as a strategic partner, identifying and helping mitigate risk.
Superior business acumen; ability to build strong relationships and trust with company leadership and business process owners.
Modern Audit/ Data-Driven Approach-- Track record of leveraging technology and using data to drive insights and actions.
Strong technical internal audit skills, including IT audit skills and knowledge of SOX 404 requirements.
Lean Process orientation; Passion to help improve operations continuously.
Strong quantitative and qualitative analysis skills; ability to take large volumes of complex information and present it in a clear and concise manner; uses data and a cogent problem-solving methodology in decision making and impact assessment.
Capability to work with a team in a fast-paced environment to meet strict deadlines while managing multiple priorities.
Steps forward to address difficult issues and guide others toward the accomplishment of identified, meaningful goals.
Initiates, supports and manages change within the organization, taking steps to remove barriers or to accelerate its pace.
Ability to quickly assimilate relevant information in unfamiliar situations.
Ability to synthesize and communicate complex technology topics to all levels of the organization.
Excellent listening, verbal, written and presentation communication skills.
The GE Leadership Behaviors – Act with Humility, Lead with Transparency, and Deliver with Focus – are an essential part of GE’s Lean culture transformation, reflecting how we act to drive progress.
Act with Humility
We embrace a culture of respect which values inclusive teams and diverse perspectives.
We actively listen to internal and external sources.
We learn from our shortcomings as much as we celebrate our wins.
Lead with Transparency
We embrace candor , saying what we think, not what people want to hear.
We share information so we can solve problems .
We contribute to each other’s development in a constructive way.
Deliver with Focus
We put safety first.
We prioritize our work, maximizing our impact.
We measure performance through the lens of our customers .
… always with unyielding integrity
GE offers a great work environment, professional development, challenging careers, and competitive compensation. GE is an Equal Opportunity Employer (https://assets.phenompeople.com/CareerConnectResources/GE11GLOBAL/en_global/desktop/assets/images/poster_screen_reader_optimized_w_supplement.pdf) . Employment decisions are made without regard to race, color, religion, national or ethnic origin, sex, sexual orientation, gender identity or expression, age, disability, protected veteran status or other characteristics protected by law.
GE will only employ those who are legally authorized to work in the United States for this opening. Any offer of employment is conditioned upon the successful completion of a drug screen (as applicable).
Relocation Assistance Provided: Yes
- General Electric Jobs