IT Audit Manager

IT Audit Manager Snowflake is about empowering enterprises to achieve their full potential — and people too. With a culture that’s all in on impact, innovation, and collaboration, Snowflake is the sweet spot for building big, moving fast, and taking technology — and careers — to the next level. Snowflake is growing and looking for a driven IT Auditor to join our team. You will report to the Manager, IT Internal Audit and help with an evolving workload with minimal supervision in a fast-paced environment. Whether it is facilitating Snowflake’s SOX compliance efforts or conducting internal audits, we strive to enhance the effectiveness, efficiency and scalability of the company’s processes, systems, and underlying internal control environment. You will be expected to problem solve, collaborate, and move fast while keeping attention to detail. Note this will be an individual contributor role to start. RESPONSIBILITIES: - Execute and support our IT internal controls assessments, other IT audits and investigations. - Cloud & Infrastructure: Lead audits of cloud infrastructure (AWS, Azure, GCP) focusing on identity and access management (IAM), encryption, and network security configurations rather than just general IT controls - Automated Assurance: Design and implement automated, data-driven audit procedures using SQL, Python, or AI coding tools like Cortex Code (in Snowflake) move toward real-time monitoring of security compliance. - Product Security Audits: Partner with Engineering and Product teams to audit secure software development lifecycles (SDLC) and CI/CD pipeline security. - Compliance Audits: Conduct internal compliance review, ensuring adherence to frameworks like ISO 27001, ISO 42001, ISO 22301, or ISO 27017. - Execute & review Documentation: Execute & Review testing work papers leveraging AI and analytics and be able to interpret risks and insights - Strategic Advisory: Act as a consultant to product teams, helping design "compliant-by-design" systems for new features and technologies (eg . use of AI tools) - Evaluate deficiencies: Assess and analyze the impact of IT control deficiencies and audit findings; identify remediation procedures and compensating controls to address the associated risks. - Participate in risk assessments and the design of audit programs in order to address relevant risks. - Assist in all phases of internal audits including planning, fieldwork, close meetings, and reporting. - Assist the Managers and Senior Managers to identify areas of improvement as well as recommend industry-wide best practices REQUIREMENTS: - Bachelor’s degree in Computer Science, Information Technology or Systems; or relevant MBA - 7+ years of relevant work experience in high-growth, cloud-first technology companies. - Deep experience in building systems to prevent risk rather than just reporting it. - Recognized professional qualification(s) CA/CPA/CISA/CIA/CISSP/CCSP (Certified Cloud Security Professional) or CCSVP (Certificate of Cloud Security Knowledge) - An ability to influence senior leadership on emerging security risks and the design of scalable internal controls. - Proven experience in supporting the execution of an end-to-end IT SOX program and control principles (e.g. COSO). Experience in auditing Salesforce and Workday Financials is strongly preferred. - Data interpretation and data driven audit/analytics approach with experience in SQL. Java/Python readability preferred. - An ability to proactively problem-solve, identify, advocate for and execute improvements. - Being able to maintain a positive attitude and embrace changes, as well as thrive in a fast-paced environment. - An ability to manage multiple, concurrent projects efficiently and effectively with minimal oversight. Maintain relationships with process owners and other key stakeholders. - Certifications like AWS, Azure and Google Cloud is a plus but not required Every Snowflake employee is expected to follow the company’s ... (truncated, view full listing at source)