IT Audit Manager

• Execute the IT SOX compliance program: ITGC and ITAC testing, deficiency management, remediation tracking, and SOX documentation. Coordinate with external auditors and co-sourced resources throughout the audit cycle.
• Provide technical support in the assessment, design, and implementation of IT General Controls and IT Application Controls in collaboration with GRC and IT management. Participate in system upgrades and implementations to ensure controls over financial reporting are adequately identified and addressed.
• Lead IT risk conversations with management and contribute to the IT risk register. Support the buildout of Figma's IT risk management program, including risk identification methodology, assessment frameworks, and leadership reporting.
• Contribute to risk updates for the Audit Committee and senior leadership as it relates to the IT risk landscape, including emerging technology risks such as cloud, SaaS, and AI.
• Develop a risk-based operational audit plan and implement audits across IT and business process areas, including where no prior year workpapers exist. Issue findings with risk ratings and actionable recommendations; track remediation to closure.
• Build audit programs from scratch, prepare clear and concise audit reports, and present findings and recommendations to senior leaders and cross-functional partners., * Holding interviews in an accessible location
• Enabling closed captioning on video conferencing
• Ensuring all written communication be compatible with screen readers
• Changing the mode or format of interviews

To ensure the integrity of our hiring process and facilitate a more personal connection, we require all candidates keep their cameras on during video interviews. Additionally, if hired you will be required to attend in person onboarding.

• 6+ years in IT audit, IT risk management, or a combination thereof
• IT SOX compliance experience with hands-on ownership of ITGCs, ITACs, and Segregation of Duties
• Experience performing operational or integrated audits, including in environments without established playbooks
• Knowledge of PCAOB/SEC requirements and audit frameworks, including CISA, CIA, or CISM certifications
• Ability to collaborate across Internal Audit and cross-functional teams (GRC, IT, Finance, Legal, Business Systems)

While not required, it's an added plus if you also have:

• Experience supporting the development of a risk management program
• SaaS or fast-paced tech company experience
• Familiarity with GRC tools (AuditBoard, Workiva, ServiceNow GRC, or similar)
• Experience with data analytics tools (ACL, IDEA, or similar) for audit processes
• Cloud security knowledge and audit experience, Job level and actual compensation will be decided based on factors including, but not limited to, individual qualifications objectively assessed during the interview process (including skills and prior relevant experience, potential impact, and scope of role), market demands, and specific work location. The listed range is a guideline, and the range for this role may be modified. For roles that are available to be filled remotely, the pay range is localized according to employee work location by a factor of between 80% and 100% of range. Please discuss your specific work location with your recruiter for more information.

Figma offers equity to employees, as well a competitive package of additional benefits, including health, dental & vision, retirement with company contribution, parental leave & reproductive or family planning support, mental health & wellness benefits, generous PTO, company recharge days, a learning & development stipend, a work from home stipend, and cell phone reimbursement. Figma also offers sales incentive pay for most sales roles and an annual bonus plan for eligible non-sales roles. Figma's compensation and benefits are subject to change and may be modified in the future.

Annual Base Salary Range:

$153,000-$221,000 USD

Figma is growing our team of passionate creatives and builders on a mission to make design accessible to all. Figma's platform helps teams bring ideas to life-whether you're brainstorming, creating a prototype, translating designs into code, or iterating with AI. From idea to product, Figma empowers teams to streamline workflows, move faster, and work together in real time from anywhere in the world. If you're excited to shape the future of design and collaboration, join us! This is a unique opportunity to contribute to a high-quality SOX program while helping create something from the ground up: an IT risk management function and operational audit capability at one of the most recognized design companies in the world. The Manager of IT Internal Audit (Risk & Ops) will support Figma's IT SOX compliance program and, in partnership with the Head of Internal Audit, develop the IT risk management and risk-based operational audit workstreams. The right candidate brings compliance rigor and the intellectual curiosity to work in greenfield territory, where the playbook does not yet exist. This is a full time role that can be held from one of our US hubs or remotely in the United States.