Senior Technology Auditor
Role details
Job location
Tech stack
Job description
The duties and responsibilities of this position consist of, but are not limited to, the following:
-
Lead and execute risk-based technology and operational audits, including audit planning, risk assessment, fieldwork, reporting, and remediation validation
-
Build and mature technology risk assessment methodologies
-
Help define audit strategy and coverage areas
-
Perform independent evaluations of the design and operating effectiveness of cybersecurity and technology controls in accordance with Internal Audit standards.
-
Assess controls across on-premises, cloud, and hybrid environments, including identity and access management, change management, SDLC, IT service management (ITSM), logging and monitoring, data protection, and incident response.
-
Evaluate technology governance, risk management, and control environments for alignment with leading frameworks such as SOX ITGC, NIST CSF, NIST 800 53, COBIT, and ITIL.
-
Conduct walkthroughs, interviews, and evidence collection with technical and non-technical stakeholders, applying professional judgment to identify risks, root causes, and control gaps.
-
Contribute to annual and continuous technology risk assessments and monitoring activities, including identifying emerging risks related to cloud, cybersecurity, automation, and artificial intelligence to inform audit planning and enterprise risk management.
-
Leverage data analytics, automation, and innovative audit techniques to enhance audit efficiency, continuous monitoring, reporting, and overall value delivery.
Requirements
-
5+ years of experience in technology auditing, IT risk management, cybersecurity, or a related discipline.
-
Experience working with engineers / systems / architectures
-
Ability to understand technical design, not just controls
-
Experience using data and analytics tools such as Python, SQL, and Power BI.
-
Experience with cloud platforms (especially Microsoft Azure), application security, ITSM, and modern software development practices.
-
Experience performing technology risk assessments.
-
Bachelor's degree in Cybersecurity, Information Systems, Computer Science, Engineering, Accounting, Business Administration or a related field.
Preferred Qualifications:
-
Working knowledge of leading technology and cybersecurity control frameworks and processes (e.g., NIST CSF, COBIT, ITIL).
-
Strong analytical, writing, and communication skills.
-
Experience auditing complex, large scale, or global technology environments.
-
Familiarity with internal auditing, IT governance, and enterprise risk management.
-
Knowledge of artificial intelligence, automation, and emerging technologies, with an enthusiasm for applying analytics and automation in audit work.
-
Professional certifications such as CISA, CISSP, CIA, or similar (or progress toward such certification).
Benefits & conditions
Your Health, Wealth and Self
Your total wellbeing is the foundation of our business, and our benefits support your financial, family and personal goals. We provide the top-tier benefits that matter to you most, including:
-
Three medical plans which include
-
Prescription drug coverage
-
Enhanced Fertility benefits
-
Flexible Spending Accounts
-
Health Savings Account (including employer contribution)
-
Dental and Vision
-
Basic and Supplemental Life Insurance
-
Short-Term and Long-Term Disability
-
Paid observed holidays
-
2 paid floating holidays for U.S. hourly employees
-
Flexible Time Off (FTO) offered to U.S. salaried employees - no accruals and no caps. Paid Time Off (PTO) offered to all other employees in the U.S. and Canada
-
Paid parental leave
-
Paid time off to volunteer in your community
-
Charitable Giving Match Program
-
401(k) with 6% company matching