樱花动漫

Skip to main content

Senior Technology Audit Program Manager

Category Security, Risk & Fraud Location Mountain View, California; San Diego, California; Atlanta, Georgia Job ID 2024-66622

Company Overview

樱花动漫 is the global financial technology platform that powers prosperity for the people and communities we serve. With approximately 100 million customers worldwide using products such as TurboTax, Credit Karma, QuickBooks, and Mailchimp, we believe that everyone should have the opportunity to prosper. We never stop working to find new, innovative ways to make that possible.

Job Overview

樱花动漫鈥檚 Finance team drives business growth and profitability through strategic, financial and operational leadership. Come join the Finance team as a Senior Technology Audit Program Manager聽with the Internal Audit team. Internal Audit supports the achievement of 樱花动漫鈥檚 goals through trusted partnerships, objective risk identification, and innovative audit services.

Responsibilities

As a member of 樱花动漫’s Internal Audit team, collaborate with colleagues and stakeholders to deliver operational, compliance and integrated audits with special emphasis on system implementations, cybersecurity and privacy.

 

As an individual contributor Senior Technology Audit Program Manager, you will lead technology-focused audits with focus on security and privacy, primarily supporting 樱花动漫’s products and services. You will work with the Engineering, IT, Security, Privacy and other functions of this fast-paced, rapidly changing business, and collaborate directly with key stakeholders to drive assurance and advisory audits. You are excellent at communicating vertically and horizontally across the company and will be comfortable working cross-functionally and providing technical guidance to other teams within Internal Audit.

 

Core responsibilities include:

  • Guide with the planning, scoping, and execution of audits, concentrating mainly on areas related to technology and its associated risks (e.g. cloud, cybersecurity and privacy) including reviews of new and enhanced products, supporting systems, process changes, system architecture and implementations.
  • As a technical subject matter expert, lead and guide the execution of technology audits overseeing scope, testing, analyzing and reporting test outcomes with minimal management oversight and direction.
  • Partner with Security and Privacy teams to understand the organization’s information security and privacy risk profile and leverage this information in the planning, designing tests and execution of audits.
  • Work cross-functionally with engineering and security teams, offering IT controls expertise and testing controls to ensure compliance with information security and privacy requirements. Understand applicable laws and regulations to provide a point of view on regulatory requirements and risks related to information security and privacy controls.
  • Work with engineering and security teams to evaluate the implications and risks of the audit findings, draw conclusions, provide remediation recommendations, and ensure the implementation of remediation plans.
  • Provide training and coaching to inscope engineering and architecture teams on an as needed basis
  • Lead the report drafting process including framing of audit observations within the relevant business context, formulation of practical recommendations that balance stakeholder needs, and development of useful insights for management.
  • Build ongoing relationships with business partners and key stakeholders across the engineering and security organizations.
  • Guide team members and Internal Audit co-sourcing partners, overseeing their tasks to ensure compliance with internal standards while fostering a cohesive and collaborative approach to audit execution.
  • Proactively devise and implement innovative strategies to continually improve the testing process and overall efficiency of the audits.

Qualifications

  • 10+ years of progressive internal audit experience in either Big 4, and/or in SaaS/Fintech industry
  • Bachelor’s or Master’s degree in Computer Science or equivalent experience
  • Strong knowledge and hands on experience in auditing platforms that are developed in the AWS cloud environment, utilizing microservices based modern techstack.
  • Experience conducting audits within a complex operational and regulatory environment.
  • Demonstrated knowledge of technology risks, including direct experience evaluating the effectiveness of cybersecurity, privacy, engineering controls and AI/ML risks.
  • Experience in creating automation for controls evaluation using scripting languages like Python.
  • AWS, ISO27001, and CISM or CISSP certifications preferred
  • Strong working knowledge of information technology best practices and control frameworks such as NIST CSF, ISO27001 and COBIT
  • Demonstrated influencing skills including the ability to explain complex topics in simple terms and inspire transformational improvement in internal controls
  • Excellent written & verbal communication and presentation skills.

樱花动漫 provides a competitive compensation package with a strong pay for performance rewards approach. The expected base pay range for this position is Bay Area California $183,000-247,500, Southern California $171,500-232,000. This position will be eligible for a cash bonus, equity rewards and benefits, in accordance with our applicable plans and programs (see more about our compensation and benefits at . Pay offered is based on factors such as job-related knowledge, skills, experience, and work location. To drive ongoing pay equity for employees, 樱花动漫 conducts regular comparisons across categories of ethnicity and gender.