Senior Analyst, IT Audit

Domtar is a leading producer of pulp, paper, packaging, tissue and wood products. Through our focus on safety and sustainability, as well as our commitment to operational excellence and our network of facilities across Canada and the United States, Domtar delivers high-quality and cost-effective products to customers around the world.

Our workforce is comprised of 14,000 talented and hardworking individuals. We are proud to offer competitive compensation, a supportive working environment, rewarding career paths and plenty of opportunities for learning and growth.

The location in Montreal, (Quebec, Canada), is seeking talent to fill the position of Senior Analyst, IT Audit. This job is full-time permanent.

The mission of the Internal Audit Department is to provide world class, responsive service to Domtar’s stakeholders by delivering independent, objective assurance and consulting services designed to add value and improve the Company’s operations and systems of internal controls. The Internal Audit Department assists the Company with accomplishing its objectives by bringing a systematic, disciplined approach to evaluate and improve the effectiveness of risk management, business processes, internal controls, and governance processes.

Overview: Reporting to the Director, IT Internal Audit, your role as a Senior Internal Auditor - IT , as an independent party, will be to assess the effectiveness of the organization’s IT risk management, governance, and internal controls processes. You will participate in the execution of the IT audit plan under the supervision of audit management. Your insight into IT processes, IT risks, and cybersecurity will be crucial during testing, and when recommending and monitoring remediation plans. You will also assist in the review of IT compliance according to the company policies and procedures and the requirements of the Sarbanes Oxley Act (SOX).

A key component of your responsibilities will also involve leveraging data analytics tools to enhance audit efficiency, to identify patterns, outliers, and risks within the organization’s systems, controls, and processes. Furthermore, you will play a vital role in the Fraud Detection Program by collaborating with the internal audit team to develop data analytics that will help identify anomalous transactions, trends, and potentially fraudulent activities. You will also have opportunities to develop your skills further while contributing to the continuous improvement of the overall efficiency and effectiveness of the Internal Audit Department.

Your Challenges:

• Refine and test IT SOX-related general controls and application controls.
• Plan and perform IT audits based on a key risks approach, using data analytics tools to improve audit efficiency, effectiveness, and uncover insights that support business decision-making.
• Utilize data analytics to enhance audit findings by performing data-driven analysis to identify patterns, outliers, and risks within the IT systems, controls, and processes.
• Write audit results and conclusions in audit reports, presenting findings in a clear, concise, and actionable format, including recommendations for improving processes, systems, and controls through data-driven insights.
• Review and critically assess risk assessments and remediation plans developed by IT teams.
• Work in collaboration with business units and process owner management to inform, assist, and improve the IT internal control environments, utilizing analytics to support control design and effectiveness.
• Fraud Detection Program: Work closely with the internal audit team and other stakeholders to develop fraud-risk-based analytics, leveraging data analysis to identify anomalous transactions, trends, and potentially fraudulent activities.
• Support project management activities assessing project performance, risks, and control efficiency throughout all project phases.
• Execute and coordinate on-demand or unplanned audit activities, applying data analysis to enhance the scope and depth of audits.
• Leverage data analytics tools and techniques to drive continuous improvement in IT audits, risk assessments, and control monitoring.
• Establish and maintain excellent relationships with business stakeholders, using analytics to support discussions around risk management, internal controls, and process improvements.

Your Skills:

• Strong analytical, problem-solving, and decision-making skills, with the ability to leverage data analytics to improve business processes and internal controls.
• Demonstrated attention to detail, organizational skills, and ability to adapt to changing technology environments and data sources.
• Proficiency with data analytics tools (e.g., ACL, Excel, Power BI, Tableau, Python) to enhance audit processes and identify risks and control deficiencies.
• Strong interpersonal, communication, presentation and report writing skills.
• Ability to express ideas in a simple, clear and convincing manner.

Your Profile:

• University degree in computer science, information systems, information technology, accounting, or related discipline.
• CISA or CRISC certifications are required; other professional designation will be considered an asset (CPA, CIA, CISM, CFE, CISSP, CISSM).
• Proficiency with ERP, database, server and security controls (SAP, JD Edwards, Linux, Windows or other).Familiarity with data analytics tools and techniques (e.g., ACL, Power BI, Tableau, Excel, Python) to support audit and compliance activities.
• Strong communication skills and bilingual in both English* and French (written and spoken).

What we are offering

• Competitive salary and annual bonus
• At least three weeks of vacation and three floating holidays a year from the first day of work, depending on your experience
• Full range of group insurance from the first day of work
• Telemedicine services
• Defined-contribution pension plan with generous employer participation from the first day of work
• Employee and family assistance program
• Education assistance program
• Health club reimbursement program
• Hybrid workplace: in-person and remote work
• Work environment based on respect, inclusion and diversity
• Office accessible by public transit

(*) English bilingual: If listed, this qualification is required since this function requires regular verbal and/or written interaction with customers, partners and/or our American subsidiaries.

Domtar is firmly committed to placing greater emphasis on the principles of equity, diversity and inclusion to empower all employees to reach their full potential. We form a dynamic team whose diverse backgrounds and wealth of perspectives are one of the keys to our success. We offer an inclusive, rewarding and safe work environment with opportunities that will help grow your skills.

To learn more about our company, consult the Domtar Company Web Site and follow us on LinkedIn, Instagram and Twitter.