WeWork is looking for an experienced candidate with a strong Technology Audit, Governance, Risk, Compliance & Information Security background to work in the Technology Audit team within the Internal Audit and Risk Management department. 

This role requires excellent project execution, communication, issue resolution and organization skills. You will perform testing, identify, and communicate audit findings to auditees and business partners. The person in this role will assist with the risk assessment, help develop audit processes, execute technology audits as part of the technology audit plan, and support multiple simultaneous projects.

The responsibilities of the Senior Technology Auditor include, but are not limited to, the following activities:

• Identify and evaluate business and technology risks while working cross-functionally with other leaders to improve the internal control environment at WeWork

• Execute technology audits, covering IT general controls, Information Security, IT infrastructure/networking, cloud architecture, and integrated business process audits

• Perform pre-and post-implementation audits of significant system implementations

• Perform and/or assist with all phases of the audits including: process understanding and documentation, risk and control identification, audit test design and execution, audit documentation, and, report writing 

• Track issues for internal audit findings and facilitate the implementation of management action plans

• Work in a team of technology auditors that report to the Technology Audit Manager

Qualifications:

• Bachelor's or master's degree in computer science, management information systems, engineering, or a related discipline

• Previously employed at one or more of the following in a relevant position: “Big 4” firm,  large multinational, or a “tech-heavy” pre-IPO company

• Excellent verbal and written communication skills and the ability to interact professionally with a diverse group of executives, managers, and subject matter experts

• Ability to prioritize, manage multiple projects, and execute in a fast-paced and dynamic environment with a strong work ethic and ownership mentality

• Outstanding negotiation, facilitation, and consensus building skills

• Certifications such as CISA, CIA, CISSP, CISM, CGEIT, CIPP, ISO 27001 Lead Auditor, PCI-ISA, PCI-QSA are preferred

Experience: 

• 4+ years in a technology audit role

• Experience in working with and/or auditing against modern cloud Software as a Service (SaaS), Platform as a Service (PaaS), and Infrastructure as a Service (IaaS) technologies 

• Experience evaluating and testing technology controls around the full technology stack from application, operating system, database, and networking layers

• Experience with risk, governance, internal controls, and compliance activities including IT Audit, COBIT, SOC1/2, PCI-DSS, ISO27001, ISO27017, GDPR, CCPA, etc.