💼 About This Role

You'll plan and execute internal audits of IT processes, systems, and controls to ensure effective risk management and regulatory compliance. You'll work closely with IT, Security, and Engineering teams to identify control gaps and drive remediation. This role supports external compliance audits and partners with GRC functions to align audit activities with regulatory requirements.

🎯 What You'll Do

• Develop and execute a risk-based internal audit plan for IT operations and security controls.
• Identify control gaps and IT-related risks, and recommend actionable improvements.
• Collaborate with IT, Security, Engineering to gather evidence and facilitate audits.
• Support external compliance audits (ISO 27001, SOC 2) by providing documentation and coordinating logistics.

📋 Requirements

• 5+ years of experience in IT auditing, IT risk, or related compliance fields.
• University degree in Information Systems, Computer Science, MIS, or a related field.
• Professional certification such as CISA or CIA is strongly preferred.
• Strong understanding of IT governance, security, and compliance frameworks (ISO 27001, SOC 2, NIST 800-53, SOX, GDPR).

✨ Nice to Have

• Experience with GRC or audit management tools (e.g., AuditBoard, Drata, Vanta).
• Experience in a high-growth or technology-driven environment.
• Familiarity with cloud platforms (AWS, Azure, O365).

🎁 Benefits & Perks

• 🏖️ Generous time away from work
• ⚕️ Healthcare insurance
• 💰 Competitive base pay
• 📈 Employee equity plan (stock options)
• 🏦 Retirement savings plans