The Director of Internal Audit fulfills a key role in assisting the University to maintain a high standard of financial and operational effectiveness. The Director is responsible for evaluating enterprise risk; conducting an effective program of internal audits to help identify and then mitigate risk; identifying opportunities to improve controls and operational efficiency; and serving as an expert resource to promote and instill effective controls, best industry practices, and adherence to applicable laws and regulations. The Director is a key strategic business partner and trusted advisor to academic and business unit leaders who have responsibility for programs involving complex financial, operational, compliance, and information systems components.
The Director is responsible for preparing periodic reports and presentations for officers of the University and/or for the Board of Trustees Audit, Finance, and Investment Committee; including plans for proposed internal audits, results of completed audits, and informational briefings on relevant trends and best practices. The Director may also be called upon to provide technical assistance to support special projects, search committees, and evaluations of vendor products.
Operationally, the Director of Internal Audit reports to the Vice President for Finance and Treasurer, and has a direct reporting relationship to the President and to the Board of Trustees as may be necessary.
PRINCIPAL DUTIES AND RESPONSIBILITIES:
Develop and regularly update an enterprise risk assessment management (ERM) program, focusing on internal control, compliance, and reputational exposures. • Gain senior management and/or board consensus around the risk assessment and, informed in part by the assessment, develop long-term and near-term plans for proposed audits of specific programs or processes. • Design and implement internal audit projects including those that involve financial, operational and compliance matters, beginning with a statement of objectives and proposed work plan, and continuing through entrance conference, field work, analysis, and draft and final reports. • Prepare and submit summary reports to the President and Vice President for Finance & Treasurer after completion of each audit project, including recommendations for improvement. • Conduct periodic follow-up on closed audits to ensure that recommendations agreed upon have been satisfactorily addressed. • Serve as a subject matter expert to bring professional experience, best practices, analysis, and research to bear on proposed or emerging programs, data systems, financial policies, and regulatory compliance practices. • Serve on standing or ad hoc committees, including search panels, vendor evaluations, compliance oversight task forces, and advisory groups as requested. • Ensure that Internal Audit is performing its work in accordance with established professional standards, and remains abreast of emerging trends and best practices that can be incorporated into its responsibilities and plans. • Actively participate in management meetings and/or committees to ensure that Internal Audit is well-informed about key business developments that could have an impact on audit priorities and/or plans. • Oversee Internal Audit’s participation in critical business and technology initiatives and projects, ensuring that audit’s perspective is effectively voiced and appropriate controls are designed and implemented on a proactive basis. • Implement and maintain audit software leveraging support from the information systems group as needed. • Contribute to, or coordinate as appropriate, the activities of the University’s external audit firm including determining how best to leverage the work and results produced by Internal Audit. In addition, follow up on findings and recommendations made to the University by its external audit firm, to ensure they are satisfactorily addressed. • Perform other duties as assigned.
Undergraduate degree from a four-year accredited college or university. • Strong knowledge and understanding of the principles and practices of enterprise risk assessment in an institution of similar complexity to MSU. • Minimum of seven years of progressively responsible experience as an internal or external auditor, including performing audits of internal controls within organizations similar in complexity to MSU. • Strong knowledge of GAAP. • Demonstrated experience in the use of enterprise information systems (such as PeopleSoft, Banner, Workday, Oracle, or SAP products), including their use in the design and execution of audits. • Ability to work independently with academic/program and administrative personnel at multiple levels, such as vice presidents, deans/business unit heads, program managers, and others within a decentralized environment. • The sound judgment and flexibility that is needed to develop appropriate but pragmatic solutions within an organization that is highly decentralized and continuously evolving. • Excellent computing skills including spreadsheet, project management, and presentation tools. • Strong communications and interpersonal skills, including articulating rationales for performing audits, preparing draft findings, and presenting final results in detailed or executive summary format. • Unwavering integrity, ethics, and professionalism. • Ability and willingness to adopt a high-level, institutional perspective while also working independently in a hands-on, results-oriented fashion.
Undergraduate or Master’s degree in accounting, finance, or business. • Certifications relevant to the position, such as Certified Public Accountant (CPA) or Certified Internal Auditor (CIA). • Relevant experience in an institution of higher education, not-for-profit, or government organization of a size and complexity similar to MSU. • Experience in preparing, or assisting and advising business units to prepare, policy and procedure documents that include attention to internal control matters. • Expertise in tax matters as applicable to exempt organizations, such as post-bond issuance compliance, UBIT, and tax reporting for non-resident aliens. • Strong knowledge of enterprise information systems and related systems development and operational controls, with experience in systems testing and auditing. • Expertise in data and information systems risk assessment and mitigation techniques. • Experience with compliance and auditing requirements within a health care institution, such as a hospital, research laboratory, or patient clinic.