Bombardier is hiring an Internal IT Auditor

Bombardier is looking for an Internal IT Auditor to perform comprehensive audits of IT General Controls and conduct IT risk assessments. At Bombardier, we design, build and maintain the world’s peak-performing aircraft. In this role, you’ll be key to ensuring our IT systems and processes meet the highest standards of compliance and control effectiveness.

What You'll Do

• Perform comprehensive audits of IT General Controls, including logical access, change management, data processing, and backup/recovery processes.
• Identify control gaps and provide recommendations for remediation.
• Participate in the creation and elaboration of the yearly internal audit plan based on risk assessments.
• Conduct IT risk assessments to identify and evaluate key IT-related risks.
• Assist in developing annual audit plans based on risk exposure.
• Develop and maintain IT audit documentation, including process flows, risk-control matrices, and testing strategies.
• Test the design and effectiveness of ITGC controls, reporting on weaknesses and inefficiencies.
• Ensure compliance with relevant regulatory and industry standards by evaluating IT systems and processes.
• Collaborate with stakeholders to align audit practices with standards.
• Assess the effectiveness of data integrity controls and access management controls.
• Work closely with IT, security, and business teams to understand control requirements, share audit findings, and ensure remediation of issues.
• Provide advisory support in implementing effective ITGC frameworks.
• Stay updated on best practices and emerging trends in ITGC, risk management, and auditing standards.
• Recommend process improvements to enhance control effectiveness and efficiency.
• Prepare and present clear, actionable audit reports and executive summaries to senior management.

What We're Looking For

• Bachelor’s degree in Information Technology, Information Systems, Finance, or a related field.
• Minimum of 5 years of experience in IT auditing, ITGC, or a similar role.
• Experience with regulatory frameworks such as SOX, SOC, and/or PCI-DSS.
• Experience in testing ITGC controls (access and change management, operations, and data backup/recovery).
• Skills to use data analysis tools (Excel, SQL), SAP, S4HANA and cloud computing controls.
• Strong understanding of business risks and analytical skills.
• Good understanding of IT infrastructure, networks, databases, and application controls.
• Familiar with audit management tools and techniques.
• Excellent analytical and problem-solving skills with keen attention to detail.
• Good spoken and written communication skills in English and French.
• Able to work both independently and collaboratively in a fast-paced environment.
• Ability to travel when required (15% of the time).

Nice to Have

• Possess CISA, CIA, or other relevant certifications.

Technical Stack

• Excel
• SQL
• SAP
• S4HANA

Team & Environment

You will collaborate with IT, security, and business teams.

Benefits & Compensation

• Insurance plans (Dental, medical, life insurance, disability, and more)
• Competitive base salary
• Retirement savings plan
• Employee Assistance Program
• Tele Health Program

Work Mode

This is a hybrid role based at our Administrative Centre in Canada.

Bombardier is an equal opportunity employer and encourages persons of any race, religion, ethnicity, gender identity, sexual orientation, age, immigration status, disability or other applicable legally protected characteristics to apply.