Director, Internal Audit

Position Summary

The Internal Audit Department’s mission is to provide independent, objective assessment of the Company’s system of internal control and underlying business processes.  Internal Audit provides consulting activities designed to add value and improve the organization’s operations.  

Internal Audit will employ the Committee of Sponsoring Organizations of the Treadway Commission (COSO) 2013 Internal Control – Integrated Framework for the assessment of the effectiveness of internal control over financial reporting.  Furthermore, Internal Audit will conform to the International Professional Practices Framework (IPPF) which encompasses a series of principle-focused standards to evaluate and improve the effectiveness of risk management, control and governance processes.

This position reports to the Vice President, Internal Audit & Corporate Compliance and will assume responsibility for all audit and risk management initiatives of the Company.  As a member of the management team, this position will ensure sound governance through the continuous assessment and enhancement of company level controls and anti-fraud procedures.  

Responsibilities include the oversight of all audits, the results of which will help the business manage strategic risks, improve or develop efficient and effective business processes, identify and communicate best practices and foster appropriate control levels for business and financial risks.

*This position is located in Mentor, Ohio with the opportunity for a hybrid work schedule. 

Duties

• Responsible for planning, developing, recommending and implementing procedures and systems in conjunction with the Audit Committee of the Board of Directors to be used in auditing internal procedures and controls throughout the organization. Develop and implement innovative ideas in an effort to continuously improve the audit methodology, procedures and overall effectiveness. This includes the strategic development of data analytics to improve the effectiveness and efficiency of audit procedures, reduce/mitigate risks and increase value to the business.
• Alongside the Vice President, Internal Audit & Corporate Compliance, develop the annual audit plan, strategy, and budget to ensure adequate coverage of financial, operational, and IT risks. Prepare Audit Committee materials with the Vice President, Internal Audit & Corporate Compliance in preparation for the quarterly Audit Committee meetings.
• Provide on-going support to the Vice President, Internal Audit & Corporate Compliance by conducting special projects requested by senior management and/or the Audit Committee. Actively conduct investigations for the Ethics Committee, conducting investigations/inquiries as required.  Ensure the proper review, documentation and communication of all reported events.
• Develop audit findings that include practical recommendations for improvements to policies, procedures and operating methods in order to increase organizational effectiveness, increase efficiency, and reduce costs. Monitor progress and resolution of outstanding issues on a periodic basis to ensure timely execution of action plans, and to ensure appropriate reporting is delivered to management and the Audit Committee.

Duties Continued

• Establish performance goals and development plans for staff, and coach each person to achieve their objectives.  Provide on-going training and growth opportunities for Internal Audit staff to continuously enhance their level of specialized knowledge and experience. Lead Internal Audit staff, as well as colleagues outside of the department to accept and support the department’s objectives.
• Evaluate policies and controls of potential acquisition target organizations as the company considers opportunities for expansion globally.  Direct the subsequent integration of all new businesses as it pertains to internal controls, with respect to both accounting controls and IT general controls.
• Responsible for leading compliance with the Sarbanes-Oxley Regulation Sections 302 and 404 for both business process and IT General Controls, adhering to the interpretive guidance issued by the Securities and Exchange Commission (SEC) in coordination with the Public Company Accounting Oversight Board (PCAOB) Auditing Standard #5. Streamline the compliance project for the Sarbanes-Oxley regulatory requirement by increasing use of data analytics. Direct and manage the relationship with the organization’s external audit firm to ensure proper audit coverage, elimination of duplication of efforts and improvement in the efficiency and effectiveness of audit activities.
• Responsible for developing, implementing, executing, and directing a program to audit STERIS dealers and distributors for compliance with anti-bribery laws and regulations, including the United States Foreign Corrupt Practices Act (FCPA), UK Bribery Act, applicable local regulations, and industry codes of ethics.
• Serve as Internal Audit’s principal participant on various in Cybersecurity working groups, including those related to compliance with regulations including the HIPAA Security Rule and FDA’s Cybersecurity for Connected Medical Devices guidance.
• Responsible for ensuring audit work is conducted in accordance with the Standards for the Professional Practice of Internal Auditing and Code of Ethics promulgated by the Institute of Internal Auditors.

Required Experience

• 12 years of professional experience, including either public accounting experience or internal audit experience
• Active Professional Certification: CPA, CIA, CFE, CISA or equivalent is required
• 8 years of people management experience
• 8 years of project management experience
• People leadership experience 
• Experience working on cross-functional teams
• Excellent PC skills, including Microsoft Office applications

Preferred Experience

• Post-graduate education preferred
• Additional professional certifications preferred
• Corporate governance experience preferred
• Data Analytics knowledge is a plus

Skills

• Possesses flexibility to respond to emerging risks
• Ability to educate others on internal control concepts, promote controls and identify areas to improve the effectiveness of the internal control system
• Self-starter with demonstrated organizational, project management, time management and problem-solving skills is preferred
• Ability to balance multiple responsibilities on-time and effectively
• Strong interpersonal skills – ability to work closely with people at all levels of the organization and facilitate the implementation of corrective action
• Strong oral and written communication skills

Knowledge and Abilities

Expert knowledge of applicable rules and regulations, including but not limited to:
 

• Current accounting and auditing principles, i.e., Generally Accepted Accounting Principles (GAAP) and Generally Accepted Auditing Standards (GAAS) 
• Sarbanes-Oxley Act provisions and methodologies for achieving compliance with Sections 302 and 404 of the regulation; working knowledge of the SEC Interpretive Guidance issued 08-2007
• IT control frameworks including Control Objectives for Information Technologies (COBIT) 5 and best practices for implementation, including via IT general controls (ITGC)
• Public Accounting Oversight Board (PCAOB) Auditing Standard #5.
• Health Insurance Portability & Accountability Act (HIPAA) Security Rule
• FDA’s Cybersecurity for Connected Medical Devices guidance
• United States Foreign Corrupt Practice Act (FCPA)
• UK Bribery Act
• EU General Data Protection Regulation
• AdvaMed Code of Ethics for Interactions with Healthcare Professionals 
• APACMed Code of Ethics
• AdvaMed Code of Ethics for Interactions with Healthcare Professionals in China
• MedTech Europe Code of Ethics
• STERIS Accounting and Business Conduct Policies 
• Italy Decree #231
• International Professional Practices Framework (IPPF) – Institute of Internal Auditors
• ISO 13485: Medical Devices – Quality Management System
• ISO 14971: Application of Risk Management to Medical Devices
• ISO 9001: Quality Management Systems
• National Defense Authorization Act (NDAA)
• False Claims Act
• Federal Anti-Kickback Statute
• Committee of Sponsoring Organizations of the Treadway Commission (COSO): Internal Control – Integrated Framework (2013)
   

What STERIS offers

The opportunity to join a company that will invest in you for the long-term. STERIS couldn’t be where it is today without our incredible people. That’s why we share in our success together by rewarding you for your hard work. Hiring people who are in it for the long run with STERIS is our ultimate goal. We do this by providing competitive salaries, healthcare benefits, tuition assistance, paid-time off, holidays, matching 401(k), annual merit, and incentive plans. Join us and help write our next chapter.    
 

#LI-SA2

#ZRSA-1 

#LI-Hybrid