Senior Technology Audit (Cybersecurity)

TL;DR

Senior Technology Audit (Cybersecurity): Conducting technology-focused audits aligned with NIST and COBIT frameworks, assessing risks and controls across hirify.global’s technology environment with an accent on enterprise security controls, incident response, and vulnerability management. Focus on evaluating the design and operating effectiveness of IT general controls, application controls, and cybersecurity controls, and driving accountability in the control environment.

Location: Hybrid (3 days in office) in Mountain View, California, Plano, Texas, or San Diego, California.

Salary: $144,000–$194,500 (Bay Area California) or $136,000–$184,000 (Southern California)

Company

hirify.global is a global financial technology platform powering prosperity for approximately 100 million customers worldwide with products like TurboTax, Credit Karma, QuickBooks, and Mailchimp.

What you will do

• Conduct technology audits aligned with NIST, COBIT, and other relevant frameworks.
• Provide testing expertise for complex cybersecurity audits, covering enterprise security controls.
• Assess technology risks across in-house systems, applications, infrastructure, data, and processes.
• Perform and document walkthroughs of key technology and business processes.
• Develop audit test plans, execute control testing, and perform data analytics.
• Draft impactful audit reports and partner with stakeholders to foster a strong risk and control mindset.

Requirements

• BA/BS degree in Information Systems, Computer Science, Business, Accounting, or a related field.
• 4+ years of relevant experience in Internal Audit, Technology Audit, Big 4 Public Accounting, or industry roles with a technology risk focus.
• Must be able to work in a hybrid work environment (3 days in office) in either our San Diego, Mountain View, or Plano offices.
• Experience performing technology audits using frameworks such as NIST, COBIT, ISO.
• Demonstrated knowledge of IT general controls, application controls, and cybersecurity risk management.
• Understanding of cloud computing environments, including experience with auditing controls in AWS.
• Proficient in code review for common programming languages (e.g., SQL, Python, Java).

Nice to have

• MS or MBA.
• CISM, CISSP, CISA, or other relevant certification.

Culture & Benefits

• Competitive compensation package with a strong pay for performance rewards approach.
• Eligibility for cash bonus, equity rewards, and benefits.
• Focus on fair pay with regular comparisons across categories of ethnicity and gender.
• Opportunities to enhance the company’s control environment.
• Work in a complex, technology-driven, agile, and innovative environment.
• Support for achievement of goals through trusted partnerships and objective risk identification.