Senior Manager, Internal Audit & Risk Advisory Services

Summary

The NFL’s Internal Audit Department is seeking an Internal Audit & Risk Advisory Services Senior Manager for Information Security to lead and/or participate in audits of League Information Technology (IT) operations and compliance reviews of member clubs, stadiums, and League contractors.  Prior audit experience is mandatory in addressing the confidentiality, integrity, and availability of information systems including but not limited to network and cloud architecture, infrastructure and end-point security, vulnerability management, and general information technology controls (ITGC). This is a highly visible role where the candidate will be required to manage multiple engagements on a concurrent basis across the League, club, stadium, and contractor landscape, deal directly with respective senior leaders within these environments, and develop trend reports to executive leadership. The candidate is directly responsible for managing multiple external resources and must demonstrate the ability to exercise good judgment and handle sensitive matters.  This role reports to the Senior Director, Internal Audit & Risk Advisory Services, who oversees all information security related audit functions.

Responsibilities

• Work jointly with the Senior Director to develop and schedule annual audit plans
• Plan, manage, and complete all work program steps for League department audits and member club, stadium, and contractor reviews
• Supervise multiple external staff in the conduct of audits and reviews
• Provide periodic updates regarding engagement status
• Review audit findings with League, club, and stadium management
• Draft reports for review and execution by the Senior Director 
• Contribute to presentations in terms of both content and delivery to League, club, and stadium management
• Conduct follow-up work, as necessary, to evaluate corrective actions taken by League, club, and stadium management to resolve previous audit observations
• Monitor quality, efficiency, and throughput key performance metrics and report status to the Senior Director
• Manage department-wide objectives along with other Audit colleagues
• Assist in defining and implementing departmental transformative efforts to further enhance Internal Audit’s core mission, capabilities, and long-term value to the League

Required Qualifications

• Bachelor’s Degree
• Overall experience of a minimum of 7-10 years and must include internal and/or external audit experience
• Strong technical foundation including an undergraduate degree in Cybersecurity, Business Information Systems, or Computer Science / Engineering
• Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), or Certified Information Systems Security Professional (CISSP) mandatory
• Other certifications of Certified Internal Auditor (CIA), Certified in Risk and Information Systems Control (CRISC), or Cybersecurity Audit Certificate are preferable but not mandatory

Other Key Attributes / Characteristics

• Experience in managing audits via co-sourced arrangements
• Expertise with cybersecurity frameworks
• Prior experience conducting audits of industrial technology systems is a plus
• Working knowledge of PCI DSS, HIPAA, and CCPA compliance frameworks is a plus
• Proven track record as a strong communicator both in written and oral presentations
• Exceptional organization skills
• Excellent time-management skills with the ability to work independently with little to no supervision
• Knowledge of the concepts, theories, principles, and practices of auditing, including internal control concepts
• Must be able to interact effectively with personnel ranging from junior co-sourced staff to NFL and auditee executive leadership
• Advanced capabilities in Microsoft suite of products and experience with GRC and reporting tools

Terms / Expected Hours of Work

• NFL employees are required to work minimum of 40 hours per week in the office.

Travel

Anticipate an average of 30% - 40%+ in travel, depending on audit cycle

Salary / Pay Range

This job posting contains a pay range, which represents the range of salaries or hourly rates that the NFL believes, in good faith, at the time of this posting that it might be willing to pay for the posted job in the location(s) specified. The NFL expects to hire for this position near the middle of the range. Only in truly rare and exceptional circumstances, where an external candidate has experience, credentials or expertise that far exceed those required or expected for the position, would the NFL consider paying a salary or rate near the higher end of the range.

Benefits Information
To learn more about our comprehensive benefits offerings, please visit: NFL BENEFITS

At the NFL, in-person work at our offices is a top priority because it allows us to collaborate more effectively, build stronger connections, and maintain the culture that drives our success. This role requires onsite presence at an NFL office or stadium location, and remote and/or hybrid working options are not offered. 

NO RELOCATION ASSISTANCE WILL BE PROVIDED.

The NFL is committed to building an inclusive work environment that reflects our incredible fan base. We provide an environment of mutual respect where equal employment opportunities are available to all employees and applicants without regard to status as protected by applicable federal, state, and local laws. 

WHO WE ARE:

NFL Core Values:

• Respect: Everyone matters. We celebrate diverse opinions, honor hard work, and value every contribution.
• Integrity: We do what's right, even when it's tough. We hold ourselves accountable and always follow through.
• Team Responsibility: We support each other and our communities. No one is bigger than the game, and every action impacts others.
• Resiliency: We set high standards, overcome adversity, and adapt to challenges, always striving for excellence.

NFL Leadership Attributes:

• Build Talent: We develop and nurture potential, empowering individuals to grow and succeed.
• Execute: We take action with precision, delivering results that drive our goals forward.
• Inspire: We motivate others through vision, energy, and a commitment to excellence.
• Live Our Values: We embody our core principles in every decision and action.
• Know the Business: We stay informed, understand our industry, and make decisions that strengthen our position.
• Think Big: We challenge the status quo, envision bold possibilities, and strive for transformative impact

WHO YOU ARE:

Talent Attributes:   What we expect for our employees:

• Embody an enthusiastic, proactive can-do attitude 
• Embrace grit, free from ego or entitlement
• Excel as a relationship builder, with the ability to influence
• Eager learner, driven by passion rather than just ambition
• Encompasses an incredible work ethic with an agile mindset