Senior Manager, Information Systems Audit

50929 - Toronto - Regular Not Applicable/Optional

Hydro One is proud to be the largest electricity transmission and distribution provider in Ontario, serving nearly  1.5 million customers. We have a long history in the industry with our roots dating back over 110 years to 1906. Since then, we have worked to grow and evolve to meet the changing needs of our customers and communities across Ontario. Today, we’re focused on providing exceptional customer service and ensuring we are building safe communities where we live, work and play.

It’s an exciting time to join the team at Hydro One!

We are seeking a skilled, motivated and engaged IT Auditor to join our Internal Audit Team. As a group we foster a collaborative, positive work environment where each team members’ contribution is valued, and ongoing professional development is encouraged and supported. Our primary focus is on internal controls related to areas of Information Technology, Operational Technology, Technology Project Delivery, Cybersecurity and Physical Security risks.

This position will play a critical role in evaluating the effectiveness of Hydro One’s internal controls and processes. The successful candidate should have expertise with one or more of the following areas: Technology Project Delivery, Physical Security and/or Cybersecurity.

General Accountabilities:
Report to the Director, IT Audit. Support Hydro One’s Internal Audit function through the planning, execution and reporting on assigned assurance and advisory engagements.

Specific Accountabilities:
Within the context provided by the Director, IT Audit and the VP, Risk and Internal Audit Services:
• Establish and maintain effective, collaborative working relationships with colleagues and internal client stakeholders.
• Perform Internal Audit engagements, in accordance with Internal Audit’s methodology:
• Collaborate with cross-functional teams to develop comprehensive audit plans;
• Conduct risk and controls assessments;
• Prepare engagement Terms of Reference, identifying business objective, scope, schedule, resourcing and budget;
• Identify and document sufficient, reliable, relevant and useful information to achieve the engagement objectives;
• Prepare and organize engagement work papers in a way that supports engagement results and conclusions;
• Formulate and clearly document engagement results and recommendations;
• Prepare well written, succinct engagement reports and effectively communicate results to internal engagement clients and stakeholders; and
• Collaboratively work with engagement clients throughout the engagement lifecycle to obtain management’s concurrence on results and, where appropriate, obtain action plans to address areas of residual risk and improvement.
• Keep abreast of corporate policies, procedures, legal, regulatory requirements, and industry developments in the areas relating to the work.
• Participate and contribute to Internal Audit’s risk-based audit planning exercises and annual audit plan development.
• Assist in the continual improvement of Internal Audit standards and practices.

Selection Criteria

Essential Knowledge, Experience and Qualifications
• Requires a Bachelor degree in Computer Science, Software Engineering, Information Management Business Management, or equivalent combination of experience and/or education.
• Professional designation such as CISA, CISM, CRISC, CISSP, CIPP, PMP and/or CIA is an asset.
• Strong knowledge of Technology Project Delivery project management techniques and has provided assurance and advisory services to large transformational projects.
• A strong working knowledge of one or more of the following frameworks:, NIST cybersecurity framework, Sarbanes-Oxley 404 compliance, COBIT, ITIL, NERC CIP and associated regulatory frameworks.
• Broad Experience with performing assurance work (audits/reviews), advisory services (consulting), business risk assessments, root cause analysis, and investigations is an asset.
• Project management skills to ensure timely execution of engagement work.
• Proficiency in business writing for the preparation of reports and presentations.
• Effective presentation skills, appropriate for senior management levels.
• Ability to work independently or in small teams, as assigned
• Requires the following competencies:
• Manages complexity;
• Copes with ambiguity;
• Action-oriented and resourceful;
• Plans, prioritizes, and optimizes work;
• Effective communication, both oral and written; and
• Situational adaptability.
• A minimum period of 5+ years is considered necessary to gain this experience.

Ideal Knowledge, Experience and Qualifications
• Experience performing physical security audits on IT and non-IT sites
• Experience performing privacy engagements
• Working knowledge and/or project experience with SAP ECC or S4 implementations and other enterprise systems
• An understanding of the electrical utility industry and regulated organizations
• Understanding of a utilities business model, organizational structure and electricity sector stakeholders

At Hydro One we understand that the success and strength of our business rests with our people. When we develop their skills, we are investing in both their success and ours. To secure the best talent, we seek to create a workforce that reflects the diverse populations of the communities where we live and work and to create a culture based on safety, innovation and inclusiveness.

We are honoured to be recognized by Forbes in its list of Canada’s Best Employers for 2025.

Thank you for considering a career with Hydro One, we welcome applications from all qualified candidates. If you are having difficulty using our online application system and you need an accommodation due to a disability, please email careers@hydroone.com. Hydro One will provide reasonable accommodation for qualified individuals with disabilities in the job application process.

Please note this email is only for accommodation requests. Resumes sent to this email address will not be considered.

Hydro One and its partners/affiliates may use AI to screen, assess or select applicants for the position.

"Employer of the year 2025"

Deadline: November 24, 2025

In the event you are experiencing difficulties applying to this job please consult our help page here.

We thank all applicants for their interest in a career at Hydro One; however, only those candidates who are selected for an interview will be contacted.