Assistant Vice President, IT Internal Audit

The Assistant Vice President, IT Internal Audit will act as a strategic advisory within Fortitude Re’s Internal Audit function, providing independent insight and guidance across technology, data, and change initiatives. Reporting to the VP, IT & Data Internal Audit Manager, this role supports the execution of the internal audit plan with a strong emphasis on proactive advisory services, change readiness, and emerging risk identification. The AVP, IT Internal Audit assists Fortitude Re in accomplishing its objectives by bringing a systematic and disciplined approach to evaluate and improve the effectiveness of Fortitude Re’s control environment including risk management, operational, financial, internal control, and governance processes. This role will collaborate with Fortitude Re stakeholders, counterparties, external auditors, and third-party service providers.  

This role will be remote.

What You Will Do: 

• Help design, establish, and mature the change management pillar within Internal Audit, shaping how the function evaluates change risk, execution readiness, and sustainability of outcomes across the organization. 

• Lead advisory engagements, providing independent perspective throughout planning, risk assessment, fieldwork, issue evaluation, and reporting — with an emphasis on insight, judgment, and practical recommendations. 

• Drive the development and use of automated audit techniques and data analytics, enabling more forward-looking risk identification, deeper coverage, and higher-impact audit conclusions. 

• Serve as a strategic partner to business and technology leaders to:

  • Identify and assess inherent technology and operational risks,

  • Evaluate control and process maturity against business objectives and risk appetite, and

  • Perform pre-implementation and change readiness reviews for significant initiatives, programs, and system changes. 

• Synthesize complex risk, control, and change-related information into clear, concise insights for senior management, and proactively advise on emerging technology, industry, and regulatory developments that may impact the Company. 

• Support Internal Audit’s engagement with regulators, including regulatory examinations, status updates, and responses to inquiries, contributing subject matter expertise and consistent messaging. 

• Maintain a strong, forward-looking understanding of current and emerging risks, and continuously strengthen Internal Audit capabilities through ongoing professional development and thought leadership. 

• Lead, mentor, and develop Senior Associates and Associates, setting clear expectations, coaching for growth, and fostering a culture of accountability, curiosity, and continuous improvement. 

• Oversee engagement staffing, establish objectives, review work and deliverables, and monitor performance to ensure audits and advisory engagements are executed efficiently, effectively, and in line with Internal Audit standards. 

• Manage and coordinate co-sourced resources, where applicable, ensuring quality, alignment to scope, and integration with Internal Audit objectives. 

• Travel may be required on a limited basis. 

What You Will Have: 

• 7+ years of relevant internal and/or external audit or advisory experience, including 3+ years leading teams or workstreams, with demonstrated progression in scope, complexity, and judgment. 

• Bachelor’s or master’s degree in computer science, information systems, finance, economics, risk management, accounting or a related discipline. 

• A recognized professional certification required (e.g., CPA, CIA, CISA, CRISC, CISSP), with IT-focused credentials strongly preferred. 

• Strong working knowledge of the IIA Standards for the Professional Practice of Internal Auditing and experience applying them in both assurance and advisory contexts. 

• Demonstrated experience assessing and advising on IT General Controls (ITGCs) and application, infrastructure, and database controls within complex technological environments. 

• Familiarity with leading IT risk and control frameworks (e.g., COBIT, NIST, ISO 27001, ITIL, FFIEC), and the ability to apply them pragmatically based on business context and risk. 

• Basic to Intermediate knowledge of common coding languages, as well as an understanding of coding governance and best practices around code development and maintenance in various platforms. 

• Solid understanding of insurance and reinsurance operations, including life, annuity, and general insurance products, and the technology risks that support those businesses. 

• Working knowledge of applicable industry laws, regulations, and regulatory expectations, including experience supporting regulatory interactions or examinations. 

• Experience leveraging data analytics and automated audit techniques to enhance risk identification, coverage, and insight (hands-on or through oversight). 

• Experience with SOX and/or MAR control testing and working knowledge of the COSO 2013 framework. 

• Proven ability to build and sustain effective, trusted relationships with senior management, acting as a credible advisor on technology risk, control maturity, and change readiness. 

• Demonstrated success leading, coaching, and developing high-performing teams, including setting expectations, providing actionable feedback, and growing future leaders. 

• Strong project leadership and organizational skills, with the ability to manage multiple priorities and deliver high-quality outcomes in dynamic environments. 

• Exceptional written, verbal, and listening communication skills, with strength in translating complex technical issues into clear audit reports and executive-level messaging. 

• Ability to integrate business, operational, compliance, technology, and financial considerations into a cohesive audit and advisory perspective. 

• Sound judgment and analytical capability to identify root causes, evaluate trade-offs, and recommend practical solutions to complex risk and control issues. 

• A strategic, intellectually curious mindset, with the ability to anticipate emerging risks, challenge assumptions, and promote continuous improvement. 

• Ability to work independently with minimal oversight, while actively contributing to team objectives and a collaborative Internal Audit culture.