Director, Global IT Audit

Ciena is committed to our people-first philosophy. Our teams enjoy a culture focused on prioritizing a personalized and flexible work environment that empowers an individual’s passions, growth, wellbeing and belonging. We’re a technology company that leads with our humanity—driving our business priorities alongside meaningful social, community, and societal impact.

How You Will Contribute:
 

The Director of IT Audit is a senior-level role responsible for leading the IT Audit function within Ciena’s Internal Audit program. This position combines individual contributor tasks with leadership responsibilities, overseeing a globally dispersed team of internal and contract auditors. The Director will focus on planning, executing, and enhancing broad-based IT audit programs, including Sarbanes-Oxley (SOX) compliance, cybersecurity assessments, application audits, and IT operational reviews. The role demands a strategic, hands-on leader who can effectively evaluate risks, monitor IT controls, validate compliance, and provide actionable insights to stakeholders across the organization.

Audit Leadership & Strategy:

• Develop and implement a comprehensive IT audit strategy aligned with organizational goals, risk appetite, and industry best practices.

• Plan and lead complex global IT audits, including SOX, operational, cybersecurity, and third-party/vendor audits, ensuring compliance with COSO, COBIT, NIST, and ITIL frameworks.

• Drive continuous risk assessment and adjust audit scope based on emerging technology risks such as cloud computing, AI/ML, and data privacy (GDPR, CCPA).

Team Management & Development:

• Lead, mentor, and manage a remote, globally diverse audit team, fostering a culture of continuous improvement and professional growth.

• Assign projects, set milestones, and ensure timely and effective completion of audit engagements.

• Provide coaching, training, and evaluation of audit staff, leveraging the company’s performance management process.

Risk Assessment & Controls Evaluation:

• Conduct IT risk assessments and design audit programs to evaluate the effectiveness of IT internal controls, including ITGC, application controls, and cybersecurity measures.

• Assess operational activities for efficiency and effectiveness, identifying opportunities for process improvements and risk mitigation.

• Advise process and control owners on evaluating risks and controls for new or revised IT processes and systems.

• Integrate enterprise risk management principles into IT audit activities, considering broader organizational risks beyond IT-specific concerns.

Stakeholder Engagement & Reporting:

• Communicate audit findings and recommendations to senior management, business partners, and the Audit Committee with clear, concise, and actionable insights.

• Lead annual co-planning efforts with external auditors, ensuring alignment on audit scope and approach.

• Present updates throughout the audit lifecycle, discussing deficiencies, recommending corrective actions, and suggesting internal control and operational improvements.

• Build and maintain strong relationships with key business partners, external regulators, and industry peers.

Continuous Improvement & Innovation:

• Lead the adoption of data analytics, automation, and emerging technologies within the IT audit function to enhance audit coverage and efficiency.

• Collaborate with the digital transformation team to assess new technology initiatives, providing proactive risk identification and mitigation strategies.

• Maintain up-to-date knowledge of industry trends, regulatory changes, and best practices in IT audit, cybersecurity, and compliance.

Compliance & Governance:

• Ensure compliance with the Institute of Internal Auditors (IIA) Professional Practices Framework and relevant regulatory requirements.

• Oversee the integrity and execution of audit engagements, including workpaper preparation, fieldwork documentation, and audit report issuance.

• Monitor the IT control environment for SOX compliance, providing assurance on the design, documentation, and execution of key IT controls.

• Ensure alignment between IT audit activities and overall corporate governance structures.

Leadership & Communication:

• Strong ability to lead a globally dispersed audit team, managing projects and meeting deadlines.

• Excellent interpersonal and communication skills, capable of translating complex technical issues into business terms.

• Proven experience engaging with stakeholders at all levels, providing value-added recommendations and driving continuous improvement.

The Must Haves:

• Education: BS/BA in Information Systems, Computer Science, Cybersecurity, or related field. Master’s degree or MBA preferred.

• Certifications: CISA, CISSP, CISM, or equivalent certifications required.

• Experience: 10-15 years of progressive IT audit, cybersecurity, or risk management experience, with recent oversight of SOX compliance.

• In-depth knowledge of IT operations, networks, applications, and cybersecurity.

• Familiarity with IT risk management frameworks (COSO, COBIT, NIST, ITIL) and regulatory requirements (SOX, GDPR, CCPA).

• Experience with ERP systems (Oracle, SAP), cloud platforms, and data analytics tools (AuditBoard, Alteryx, IDEA, ACL).

• Proven track record in network vulnerability assessments and penetration testing.

• Domestic and international travel may be required, with an estimated travel percentage of 10%.

Assets:

• Results-Oriented: Demonstrates the ability to motivate, influence, and drive results through cross-functional collaboration.

• High Ethical Standards: Maintains objectivity, confidentiality, and integrity in all aspects of work.

• Innovative Thinker: Identifies opportunities for process improvements and embraces new technologies.

• Adaptable & Flexible: Thrives in a fast-paced, evolving environment and effectively manages competing priorities.
   

Pay Range:
 

The annual pay range for this position is $157,100 - $250,900
 

#LI-SG

Not ready to apply? Join our Talent Community to get relevant job alerts straight to your inbox.

At Ciena, we are committed to building and fostering an environment in which our employees feel respected, valued, and heard.  Ciena values the diversity of its workforce and respects its employees as individuals. We do not tolerate any form of discrimination.

Ciena is an Equal Opportunity Employer, including disability and protected veteran status.

If contacted in relation to a job opportunity, please advise Ciena of any accommodation measures you may require.