Department
F&A Internal Audit and Compliance
About the Department
The University of Chicago is committed to maintaining a culture of responsibility in which its community members conduct themselves in accordance with the highest standards. As part of this commitment, the University seeks to maintain an effective compliance program in which University community members are aware of, understand and comply with applicable laws, rules, regulations, policies, and procedures, including University policies and procedures.
To promote excellence in, and otherwise support, University compliance efforts, the University has established an Office of Compliance and also has convened a Compliance Committee consisting of senior University leaders. The overall mission of the Office of Compliance is to promote an organizational culture and support a formal compliance program that encourages ethical conduct, a commitment to compliance with the law and University policies, and accountability for these obligations in furtherance of the University’s values and pursuit of eminence.
The purpose of the Internal Audit function at the University is to provide the Board of Trustees and senior University administration with an independent assessment of the University’s system of internal controls. Internal Audit examines and evaluates the controls in place to safeguard University assets, evaluates the effective use of resources, reviews compliance with policies, procedures, laws and regulations to protect the research and teaching mission of the University. The University of Chicago’s Internal Audit Charter governs the activities of the University’s Internal Audit function.
The Enterprise Risk Management program is informed by Compliance and Internal Audit efforts, and creates a uniform process for evaluating the key risk areas identified in the Internal Auditor’s triennial risk assessment. The output of this program is presented to the Board of Trustees Audit Committee, and informs discussions with the Committee, as well as the internal audit plan.
Job Summary
Reporting to the Assistant Vice President (AVP) for Institutional Compliance, Internal Audit, and Enterprise Risk Management (ERM). The Senior Director will serve as a strategic partner in overseeing and advancing the University’s internal audit, ERM, and compliance programs. The Senior Director will lead the day-to-day management of outsourced internal audit activities, coordinate across compliance partners, and support strategic enterprise risk management initiatives in a decentralized environment. This leader will play a critical role in implementing transformative audit and risk capabilities including data analytics, automation, and artificial intelligence.
Responsibilities
- Provides strategic leadership and direct supervision to the University’s outsourced internal audit firm, leading the engagement teams through scoping, fieldwork execution, deliverables, reporting timelines, and issue resolution.
- Supports the development and execution of multi-year strategic plans for internal audit, enterprise risk management, and compliance programs. Aligns initiatives with institutional priorities and emerging regulatory landscapes.
- Leads the administration and analysis of the University’s enterprise risk management (ERM) program, including risk identification, assessment, mitigation planning, and reporting.
- Supports the execution of the University’s Integrated ERM and Compliance Committee, working closely with units across the University and UChicago Medicine on areas of shared risk.
- Partners with compliance leads to harmonize compliance processes, support training, monitor emerging regulations, and track remediation plans.
- Analyzes and reports on risk trends, audit findings, and compliance metrics to senior leadership and the Audit Committee of the Board of Trustees.
- Supports the AVP in preparing materials, dashboards, and reports to senior leadership and the Audit Committee, ensuring accuracy, clarity, and alignment with strategic priorities.
- Assists in responding to senior leadership and Audit Committee requests and inquiries, and ensures timely delivery of updates on risk, audit, and compliance matters.
- Oversees day-to-day administration and case triage for the University’s Whistleblower Hotline (NAVEX), including coordinating investigations, ensuring timely resolution, and analyzing trends to inform risk assessments.
- Contributes to the continued development and enhancement of the University's Compliance Program.
- Supports the evolution of the ERM program through improved methodology, stakeholder engagement, and integration with planning, audit, and compliance activities.
- Collaborates with functional and academic units to build risk ownership and embed decision-making across the University.
- Advances the integration of data analytics, automation, and AI capabilities into audit, risk, and compliance programs to enhance insight and efficiency. Leads change management efforts to embed these capabilities into core operations.
- Contributes to the development of annual goals, work plans, and maturity models for the University’s internal audit, ERM, and compliance efforts.
- Supports continuous improvement efforts and adoption of best practices across internal audit, ERM, and compliance.
- Provides supervision, mentorship, and guidance to team members and acts as a culture champion for collaboration, ethics, and accountability.
- Leads and provides expertise in the implementation of compliance activities designated by the University's strategic plans. Monitors University compliance with regulations and laws.
- Represents the University in regulatory proceedings before federal, state and local agencies. Prepares the University's position statements and responses to information requests. Leads and manages audit responses and negotiations with administrative agencies.
- Performs other related work as needed.
Minimum Qualifications
Education:
Minimum requirements include a college or university degree in related field.
Work Experience:
Minimum requirements include knowledge and skills developed through 7+ years of work experience in a related job discipline.
Certifications:
---
Preferred Qualifications
Education:
- Bachelor’s degree in accounting, finance, business, public administration, or a related field.
Experience:
- Progressive experience in internal audit, compliance, or enterprise risk management with experience managing outsourced audit providers or third-party partners.
- Demonstrated success working within or advising large, decentralized organizations, with experience in education a plus.
- Preparing governance reports and materials for senior executive committee, boards, or audit committees.
- Familiarity with governance, risk, and compliance (GRC) tools and platforms; implementing dashboards or analytics is a plus.
Certifications:
Preferred Competencies
- General understanding of higher education compliance landscape and regulatory frameworks.
- Strategic thinker able to translate goals into actionable plans.
- Facilitate executive-level risk and audit discussions.
- Demonstrated commitment to continuous improvement and innovation in audit and risk functions.
- Strong analytical, organizational, and leadership skills; excellent verbal and written communication skills.
- Proven ability to lead and develop high-performing teams, manage and deliver complex projects, fostering collaboration, accountability, and professional growth in a cross-functional environment.
Application Documents
When applying, the document(s) MUST be uploaded via the My Experience page, in the section titled Application Documents of the application.
Job Family
Legal & Regulatory Affairs
Role Impact
Individual Contributor
Scheduled Weekly Hours
37.5
Drug Test Required
No
Health Screen Required
No
Motor Vehicle Record Inquiry Required
No
Pay Rate Type
Salary
FLSA Status
Exempt
Pay Range
$142,000.00 - $187,000.00
The included pay rate or range represents the University’s good faith estimate of the possible compensation offer for this role at the time of posting.
Benefits Eligible
Yes
The University of Chicago offers a wide range of benefits programs and resources for eligible employees, including health, retirement, and paid time off. Information about the benefit offerings can be found in theBenefits Guidebook.
Posting Statement
The University of Chicago is an equal opportunity employer and does not discriminate on the basis of race, color, religion, sex, sexual orientation, gender, gender identity, or expression, national or ethnic origin, shared ancestry, age, status as an individual with a disability, military or veteran status, genetic information, or other protected classes under the law. For additional information please see the University's Notice of Nondiscrimination.
Job seekers in need of a reasonable accommodation to complete the application process should call 773-702-5800 or submit a request via Applicant Inquiry Form.
All offers of employment are contingent upon a background check that includes a review of conviction history.A conviction does not automatically preclude University employment.Rather, the University considers conviction information on a case-by-case basis and assesses the nature of the offense, the circumstances surrounding it, the proximity in time of the conviction, and its relevance to the position.
The University of Chicago's Annual Security & Fire Safety Report (Report) provides information about University offices and programs that provide safety support, crime and fire statistics, emergency response and communications plans, and other policies and information. The Report can be accessed online at: http://securityreport.uchicago.edu. Paper copies of the Report are available, upon request, from the University of Chicago Police Department, 850 E. 61st Street, Chicago, IL 60637.
