IT Audit Manager

The role:

SoFi is seeking an IT Internal Auditor Manager to join SoFi’s Internal Audit Department, reporting to the Internal Audit Senior Director focused on IT audits (inclusive of cybersecurity, resiliency, infrastructure). You will be supporting audits and reviews of various areas related to SoFi Technologies Inc and its various entities. This is a hands- on audit role with primary responsibility for completing detailed testing of IT processes and controls. You will also assist in performing audit risk assessments and developing audit objectives, determination of key risks, and creation of procedures as needed. Also, you will prepare working papers to document your testing of key internal controls in accordance with departmental and professional internal audit standards. You should have a proven ability to build relationships/partnerships and work cross- functionally to drive time-sensitive deliverables, issues tracking and reporting.

What you'll do:

• Assist the Internal Audit team in accomplishing audit department objectives in a team environment.
• Collaborate with professionals from various business functions to help plan the audit scope, identify and analyze technology risks, develop work program timelines, conduct interviews, observe the operation of technology processes and controls, document and analyze procedures and controls, perform audit tests, document audit workpapers, develop audit recommendations, review identified issues with appropriate management, and prepare audit report findings.
• Serve as a fieldwork leader by directing the daily progress of fieldwork, informing supervisors of the audit status, and potentially supervising staff at lower levels depending on the nature of the assignment.
• Assist in developing formal written reports to communicate audit results to management and other stakeholders.
• Continuously seek opportunities for audit process improvement.
• Use knowledge of the current technology environment and financial services industry technology trends to proactively identify potential risk, issues, and findings; and communicate this information to the audit team.
• Demonstrate and apply strong project management skills to work on multiple priorities / projects simultaneously while meeting deadlines.
• Consider the use of data analytics and tools to efficiently execute audit procedures.
• Continue to develop and expand knowledge of the audit profession, financial and technology industry, and products through self-study, research, and continuing education efforts.
• Execute special assignments and other duties as assigned.
• Some travel may be required.

What you'll need:

• Bachelor's degree or equivalent in business, accounting, finance, information systems, cybersecurity, computer science or related fields.
• Minimum of 4 years of experience working as an IT auditor (external or internal audit), IT risk advisor, or related experience working in a financial institution with knowledge of general and technology internal controls, risk management, and regulatory compliance.
• Understanding and experience inclusive of cybersecurity, resiliency, and infrastructure
• Professional certification(s) or related licensure preferred (CIA, CISA, CPA, CISSP, or equivalent).
• Understanding of internal control concepts, internal auditing standards, risk assessment practices, COSO three lines of defense, etc.
• Understanding of IT, engineering processes, architecture, resiliency, automation, data, and cloud computing.
• Experience with audit engagement planning, executing, and reporting is a plus.
• Highly motivated self-starter who works well individually and in teams while meeting deadlines.
• Inquisitive, curious, and proactive in identifying underlying technology risks.
• Excellent project management and organization skills; ability to navigate through ambiguity, manage and coordinate multiple project assignments simultaneously, accept ownership and accountability for projects, and deliver on commitments.
• Strong written, verbal communication, and presentation skills.
• Ability to develop audit workpapers, and write meaningful reports and presentations, with the ability to articulate risk and business impact
• Experience improving the effectiveness and efficiency of audit activities through innovation.