Senior Technology Auditor
WeWork is looking for an experienced candidate with a strong Technology Audit, Governance, Risk, Compliance & Information Security background to work in the Technology Audit team within the Internal Audit and Risk Management department.
This role requires excellent project execution, communication, issue resolution and organization skills. You will perform testing, identify, and communicate audit findings to auditees and business partners. The person in this role will assist with the risk assessment, help develop audit processes, execute technology audits as part of the technology audit plan, and support multiple simultaneous projects.
The responsibilities of the Senior Technology Auditor include, but are not limited to, the following activities:
Identify and evaluate business and technology risks while working cross-functionally with other leaders to improve the internal control environment at WeWork
Execute technology audits, covering IT general controls, Information Security, IT infrastructure/networking, cloud architecture, and integrated business process audits
Perform pre-and post-implementation audits of significant system implementations
Perform and/or assist with all phases of the audits including: process understanding and documentation, risk and control identification, audit test design and execution, audit documentation, and, report writing
Track issues for internal audit findings and facilitate the implementation of management action plans
Work in a team of technology auditors that report to the Technology Audit Manager
Qualifications:
Bachelor's or master's degree in computer science, management information systems, engineering, or a related discipline
Previously employed at one or more of the following in a relevant position: “Big 4” firm, large multinational, or a “tech-heavy” pre-IPO company
Excellent verbal and written communication skills and the ability to interact professionally with a diverse group of executives, managers, and subject matter experts
Ability to prioritize, manage multiple projects, and execute in a fast-paced and dynamic environment with a strong work ethic and ownership mentality
Outstanding negotiation, facilitation, and consensus building skills
Certifications such as CISA, CIA, CISSP, CISM, CGEIT, CIPP, ISO 27001 Lead Auditor, PCI-ISA, PCI-QSA are preferred
Experience:
4+ years in a technology audit role
Experience in working with and/or auditing against modern cloud Software as a Service (SaaS), Platform as a Service (PaaS), and Infrastructure as a Service (IaaS) technologies
Experience evaluating and testing technology controls around the full technology stack from application, operating system, database, and networking layers
Experience with risk, governance, internal controls, and compliance activities including IT Audit, COBIT, SOC1/2, PCI-DSS, ISO27001, ISO27017, GDPR, CCPA, etc.