Plan and conduct IT audits, risk assessments, and independent gap analyses
Prepare audit reports summarizing finding, risk, and actionable recommendations for review by management and the Information Security Program Committee
Manage the company’s risk management program, including assessments, mitigation strategies, and maintaining the risk register
Ensure compliance with internal security policies
Lead and manage external audits conducted by a third-party audit firm on standards such as SOC 1, SOC 2, HIPAA, ISO27001, and PCI
Collaborate with IT, Security, Finance, and Compliance teams to assess processes, identify risks, and ensure compliance
Participate in fraud investigations, policy development and updates, and acquisition due diligence
Partner with departments across the organization to support key initiatives

Familiarity with compliance standards (ISO27001, PCI, HIPAA, GDRP, NIST, SOC1 & SOC2)
Valid driver’s license and insurance
Experience with Internal Audit reporting
Perform with a high degree of accuracy and proven ability to meet deadlines
Integrity, Communication, Trustworthiness
Accountability, Leadership, Business Acumen
Mission Alignment, Strategic Awareness
Bachelor's Degree or 4+ Years Professional Experience in Information Technology or Information Assurance
4+ Years Experience in internal audit, risk, or compliance, preferably in the technology sector
Certified Information Systems Auditor (CISA) or Certified Internal Auditor (CIA) certification, strongly preferred

Generous paid time off policy, including vacation and 10 paid holidays
Competitive and comprehensive medical, dental, and vision benefits plans with Flexible Spending benefits including medical/dental expenses and dependent care
401(k) retirement plan with a generous contribution
Group Term Life Insurance covered 100% by employer
Wellness Incentive to promote overall employee well-being
Paid volunteer time
Business casual dress code

Internal Auditor

Key skills