Intuit
Senior Technology Audit Program Manager
Intuit, Atlanta, Georgia, United States, 30383
OverviewIntuit’s Finance team drives business growth and profitability through strategic, financial and operational leadership. Come join the Finance team as a Senior Technology Audit Program Manager with the Internal Audit team. Internal Audit supports the achievement of Intuit’s goals through trusted partnerships, objective risk identification, and innovative audit services.
What you'll bring
10+ years of progressive internal audit experience in either Big 4, and/or in SaaS/Fintech industry
Bachelor’s or Master’s degree in Computer Science or equivalent experience
Strong knowledge and hands on experience in auditing platforms that are developed in the AWS cloud environment, utilizing microservices based modern techstack.
Experience conducting audits within a complex operational and regulatory environment.
Demonstrated knowledge of technology risks, including direct experience evaluating the effectiveness of cybersecurity, privacy, engineering controls and AI/ML risks.
Experience in creating automation for controls evaluation using scripting languages like Python.
AWS, ISO27001, and CISM or CISSP certifications preferred
Strong working knowledge of information technology best practices and control frameworks such as NIST CSF, ISO27001 and COBIT
Demonstrated influencing skills including the ability to explain complex topics in simple terms and inspire transformational improvement in internal controls
Excellent written & verbal communication and presentation skills.
How you will leadAs a member of Intuit’s Internal Audit team, collaborate with colleagues and stakeholders to deliver operational, compliance and integrated audits with special emphasis on system implementations, cybersecurity and privacy.
As an individual contributor Senior Technology Audit Program Manager, you will lead technology-focused audits with focus on security and privacy, primarily supporting Intuit’s products and services. You will work with the Engineering, IT, Security, Privacy and other functions of this fast-paced, rapidly changing business, and collaborate directly with key stakeholders to drive assurance and advisory audits. You are excellent at communicating vertically and horizontally across the company and will be comfortable working cross-functionally and providing technical guidance to other teams within Internal Audit.
Core responsibilities include:
Guide with the planning, scoping, and execution of audits, concentrating mainly on areas related to technology and its associated risks (e.g. cloud, cybersecurity and privacy) including reviews of new and enhanced products, supporting systems, process changes, system architecture and implementations.
As a technical subject matter expert, lead and guide the execution of technology audits overseeing scope, testing, analyzing and reporting test outcomes with minimal management oversight and direction.
Partner with Security and Privacy teams to understand the organization’s information security and privacy risk profile and leverage this information in the planning, designing tests and execution of audits.
Work cross-functionally with engineering and security teams, offering IT controls expertise and testing controls to ensure compliance with information security and privacy requirements. Understand applicable laws and regulations to provide a point of view on regulatory requirements and risks related to information security and privacy controls.
Work with engineering and security teams to evaluate the implications and risks of the audit findings, draw conclusions, provide remediation recommendations, and ensure the implementation of remediation plans.
Provide training and coaching to inscope engineering and architecture teams on an as needed basis
Lead the report drafting process including framing of audit observations within the relevant business context, formulation of practical recommendations that balance stakeholder needs, and development of useful insights for management.
Build ongoing relationships with business partners and key stakeholders across the engineering and security organizations.
Guide team members and Internal Audit co-sourcing partners, overseeing their tasks to ensure compliance with internal standards while fostering a cohesive and collaborative approach to audit execution.
Proactively devise and implement innovative strategies to continually improve the testing process and overall efficiency of the audits.
#J-18808-Ljbffr
What you'll bring
10+ years of progressive internal audit experience in either Big 4, and/or in SaaS/Fintech industry
Bachelor’s or Master’s degree in Computer Science or equivalent experience
Strong knowledge and hands on experience in auditing platforms that are developed in the AWS cloud environment, utilizing microservices based modern techstack.
Experience conducting audits within a complex operational and regulatory environment.
Demonstrated knowledge of technology risks, including direct experience evaluating the effectiveness of cybersecurity, privacy, engineering controls and AI/ML risks.
Experience in creating automation for controls evaluation using scripting languages like Python.
AWS, ISO27001, and CISM or CISSP certifications preferred
Strong working knowledge of information technology best practices and control frameworks such as NIST CSF, ISO27001 and COBIT
Demonstrated influencing skills including the ability to explain complex topics in simple terms and inspire transformational improvement in internal controls
Excellent written & verbal communication and presentation skills.
How you will leadAs a member of Intuit’s Internal Audit team, collaborate with colleagues and stakeholders to deliver operational, compliance and integrated audits with special emphasis on system implementations, cybersecurity and privacy.
As an individual contributor Senior Technology Audit Program Manager, you will lead technology-focused audits with focus on security and privacy, primarily supporting Intuit’s products and services. You will work with the Engineering, IT, Security, Privacy and other functions of this fast-paced, rapidly changing business, and collaborate directly with key stakeholders to drive assurance and advisory audits. You are excellent at communicating vertically and horizontally across the company and will be comfortable working cross-functionally and providing technical guidance to other teams within Internal Audit.
Core responsibilities include:
Guide with the planning, scoping, and execution of audits, concentrating mainly on areas related to technology and its associated risks (e.g. cloud, cybersecurity and privacy) including reviews of new and enhanced products, supporting systems, process changes, system architecture and implementations.
As a technical subject matter expert, lead and guide the execution of technology audits overseeing scope, testing, analyzing and reporting test outcomes with minimal management oversight and direction.
Partner with Security and Privacy teams to understand the organization’s information security and privacy risk profile and leverage this information in the planning, designing tests and execution of audits.
Work cross-functionally with engineering and security teams, offering IT controls expertise and testing controls to ensure compliance with information security and privacy requirements. Understand applicable laws and regulations to provide a point of view on regulatory requirements and risks related to information security and privacy controls.
Work with engineering and security teams to evaluate the implications and risks of the audit findings, draw conclusions, provide remediation recommendations, and ensure the implementation of remediation plans.
Provide training and coaching to inscope engineering and architecture teams on an as needed basis
Lead the report drafting process including framing of audit observations within the relevant business context, formulation of practical recommendations that balance stakeholder needs, and development of useful insights for management.
Build ongoing relationships with business partners and key stakeholders across the engineering and security organizations.
Guide team members and Internal Audit co-sourcing partners, overseeing their tasks to ensure compliance with internal standards while fostering a cohesive and collaborative approach to audit execution.
Proactively devise and implement innovative strategies to continually improve the testing process and overall efficiency of the audits.
#J-18808-Ljbffr