CrawlJobs Logo

IT Security Internal Audit Senior Manager

United States, Austin 175000.00 - 210000.00 USD / Year · Job Posted February 17, 2026
Apply Position
Job Link Share

Job Description

Gong harnesses the power of AI to transform how revenue teams win. The Gong Revenue AI Operating System unifies data, insights, and workflows into a single, trusted system that observes, guides, and acts alongside the world’s most successful revenue teams. Powered by the Gong Revenue Graph, AI-powered intelligence, specialized agents, and trusted applications, Gong helps more than 5,000 companies around the world deeply understand their teams and customers, automate critical sales workflows, and close more deals with less effort. For more information, visit www.gong.io. At Gong, you will join a company built on innovative products, ambitious goals, and passionate people. We are shaping the future of revenue intelligence and we want people who are excited to build what comes next. You will work with a team that dreams big, moves fast, and cares deeply about the craft and about each other. Here, transparency and trust are core to how we operate, and every person has the opportunity to make a visible impact. If you want to grow, stretch, and do work that truly matters, Gong is the place to do the best work of your career. We’re looking for an IT and Security risk professional with deep experience in internal audit, controls design and testing who approaches the work as a trusted advisor and problem solver—not a checkbox-driven compliance auditor. You understand IT operations, security architecture, IT General Controls at a public-company level, but you focus on what actually works in practice and keeps business moving at speed. This role is ideal for someone who knows how internal audit should function, but prefers partnering with the business, engineering, and security teams to strengthen controls, manage risk, and enable smart growth—without slowing teams down. You’ll start as an individual contributor with significant autonomy, influencing across technology and security organizations to help design and test a control environment that scales, stands up to scrutiny, and supports rapid execution.

Job Responsibility

  • Partner with technology, security, and application owners to design, document, and test practical internal controls over IT and Security, including ITGCs and application controls
  • Lead public-company–level IT and security control assessments and testing, with a strong focus on risk relevance and control effectiveness
  • Identify control gaps and emerging risks, and collaborate with stakeholders on clear, actionable remediation strategies
  • Execute walkthroughs, testing, and audit documentation end-to-end with clarity, efficiency, and judgment
  • Document and communicate findings, root causes, and recommendations in plain, business-friendly language
  • Apply data analytics and AI-enabled techniques to enhance audit and controls testing coverage
  • Build trust across teams by acting as a thoughtful advisor and partner, not a compliance cop
  • Present results, insights, and progress updates to senior management and leadership
  • Support the development of a modern, risk-focused audit strategy covering engineering, product development, cybersecurity and Corp IT
  • Ensure audit work products meet quality standards aligned with professional and regulatory expectations—without unnecessary bureaucracy
  • Collaborate closely with engineering, security, and compliance teams to deliver cohesive and non-duplicative coverage of technology risks

Requirements

  • 10+ years of experience in internal audit, IT controls, security assurance, or related roles (public accounting a plus)
  • Bachelor’s degree in Accounting, MIS, Business, or a related field
  • CISA, CIA, CPA, CISSP, or similar certification preferred
  • Strong understanding of SOX, PCAOB/SEC guidance, COSO, and AS5—applied with judgment
  • Experience working in or supporting a public company environment
  • High integrity, accountability, and a sense of humor
  • Strong hands-on experience with IT and security internal auditing, controls testing, and risk assessment
  • A pragmatic, business-first mindset with strong analytical and problem-solving skills
  • Comfort operating in ambiguous environments and balancing multiple priorities
  • Clear, confident communicator who can influence without relying on authority
  • Ownership mentality with a willingness to roll up sleeves and get into the details
  • Working knowledge of IT and security frameworks, cloud environments, and regulations including GDPR and Privacy
  • Practical experience using data analytics and AI to support audits
  • Experience supporting or auditing SaaS and technology-driven business models

What we offer

  • We offer Gongsters a variety of medical, dental, and vision plans, designed to fit you and your family’s needs
  • Wellbeing Fund - flexible wellness stipend to support a healthy lifestyle
  • Mental Health benefits with covered therapy and coaching
  • 401(k) program to help you invest in your future
  • Education & learning stipend for personal growth and development
  • Flexible vacation time to promote a healthy work-life blend
  • Paid parental leave to support you and your family
  • Company-wide recharge days each quarter
  • Work from home stipend to help you succeed in a remote environment

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Similar Jobs for

IT Security Internal Audit Senior Manager

8 matching positions

Manager, Internal IT Audit

Based in Richmond, our client is a publicly traded company looking to add a Mana...
Location
Location
Canada , Richmond
Salary
Salary:
150000.00 - 170000.00 CAD / Year
aplin.com Logo
Aplin
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • CPA and/or PMP considered an asset
  • 7+ years of audit experience, including at least 4 years in IT audit within a complex environment
  • Professional IT audit or security designation (e.g., CISA, CRISC, CISSP, CISM)
  • Diploma or degree in computer science, information systems, accounting, finance, or a related field
Job Responsibility
Job Responsibility
  • Lead the development and ongoing maintenance of the enterprise IT risk assessment
  • Design and execute a risk-based IT audit plan aligned with business priorities
  • Plan and perform IT audits and advisory projects, including system access controls, ERP environments, cybersecurity, business continuity, privacy, and data governance
  • Work collaboratively with IT and business teams to provide practical, actionable recommendations to mitigate technology and cyber risks
  • Oversee and coordinate security testing initiatives, including penetration testing and disaster recovery reviews
  • Evaluate the effectiveness of IT policies, procedures, and controls, and monitor remediation efforts
  • Support the Internal Audit team by integrating IT audit procedures into broader audit engagements
  • Prepare clear, concise reports and present IT audit results to senior management and the Audit Committee
  • Stay current on emerging IT risks, regulatory requirements, and industry best practices
What we offer
What we offer
  • Discretionary bonus (10 to 20%+)
  • Extended health and dental benefits
  • Stock options
  • Fulltime
Read More
Arrow Right

Internal Audit Senior Manager

This Internal Audit Senior Manager is critical to the performance and continued ...
Location
Location
United States , Toledo
Salary
Salary:
Not provided
owenscorning.com Logo
Owens Corning
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree required in relevant discipline (finance, accounting, information systems or related area). Advanced degree preferred
  • Certifications: professional designations are preferred (e.g., CPA, CIA, CISSP/CISM, etc.)
  • 10+ years of prior business experience in accounting, internal audit, public accounting, or IT audit/IT security
  • with demonstrated direct people leadership of teams and managing complex situations. Direct people-leader Change leadership capabilities as demonstrated through previous experience
  • Analytics enablement: knowledge of data extraction/transformation and analytics approaches
  • comfort with scripting and/or audit analytics tools (e.g., ACL or similar) and visualization platforms (Power BI/Copilot)
  • Operating context: Experience partnering with operational and functional stakeholders
  • manufacturing and/or multinational environments are a plus
  • Strong leadership presence
  • ability to influence and manage senior stakeholders while maintaining audit independence
Job Responsibility
Job Responsibility
  • Leads and directs IT audit activities along with facility- and process-related assessments, accountable for planning, alignment, execution, and reporting in accordance with a risk-based annual audit plan
  • Advances the use of data analytics, visualization, and automation (e.g., dashboards, scripts, continuous monitoring) to expand audit coverage and improve team efficiency
  • Oversees the processes to extract, clean, transform, and analyze structured/unstructured data
  • uses techniques such as risk-based sampling, outlier detection, trend analysis, and root-cause analysis to generate actionable insights
  • Develops clear data visualizations and narratives for non-technical stakeholders using tools such as Power BI and Copilot
  • Explores and responsibly applies advanced analytics (including machine learning/predictive methods, where appropriate) and AI to identify emerging risks and automate repeatable procedures
  • Coaches, trains, and develops internal audit staff through recruiting, delegation, feedback, and performance management
  • allocates resources across projects and monitor progress
  • Ensures departmental compliance with professional standards and internal procedures (e.g., quality review, file closeout, continuing education)
  • Delivers assurance, business insights and continuous improvement to the corporation
What we offer
What we offer
  • Exposure to senior leadership
  • Global scope and experience
  • Direct and expanded leadership opportunities
  • Influence through modernization of audit through analytics and automation
  • Development through creating a talent pipeline into broader enterprise roles
  • Fulltime
Read More
Arrow Right

Internal Audit Senior Manager

The Internal Audit Senior Manager would be responsible for overseeing and managi...
Location
Location
India , Bengaluru
Salary
Salary:
Not provided
https://www.bosch.pl/ Logo
Robert Bosch Sp. z o.o.
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in accounting, Finance, Business, or a related field
  • CA/CIA/CPA/ICAEW or equivalent certification preferred
  • 15+ years of experience in internal audit, preferably in the software or GCC industries or Big 4 consulting firms
  • Experience with risk-based auditing and knowledge of IT audit frameworks
  • Experience in auditing software development lifecycle or technology-driven processes is an advantage
  • Strong understanding of internal audit methodologies, risk management, and corporate governance frameworks
  • Expertise in software development processes, IT controls, and security risk management
  • Strong analytical skills, with the ability to assess complex systems and identify control weaknesses
  • Excellent communication skills, both written and verbal
  • Leadership capabilities to manage teams and drive cross-functional collaboration
Job Responsibility
Job Responsibility
  • Lead the development of the annual internal audit plan in collaboration with senior management, ensuring alignment with the organization's objectives and risk profile
  • Conduct risk assessments to identify key areas of concern and prioritize audits accordingly
  • Lead a team of qualified Accountants to deliver the audits
  • Perform audits of financial, operational, compliance, and IT-related areas in both the corporate and software-specific sectors
  • Evaluate the adequacy and effectiveness of internal controls, risk management practices, and corporate governance processes
  • Ensure the company complies with relevant local and international regulatory frameworks, GDPR (General Data Protection Regulation), and industry-specific standards
  • Monitor and report on the effectiveness of compliance programs and internal control procedures
  • Prepare detailed audit reports summarizing findings, risks, and recommendations
  • Present audit results and provide actionable insights to Head of Audit & Risk
  • Work closely with stakeholders to discuss audit results and drive the implementation of corrective actions
  • Fulltime
Read More
Arrow Right
New

Senior IT Security Compliance Analyst

The Compliance Analyst is a member of the Nintex Security Team and partners with...
Location
Location
Malaysia , Kuala Lumpur
Salary
Salary:
Not provided
nintex.com Logo
Nintex
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Information Security, Information Technology, Risk Management, Business, or a related field, or equivalent practical experience.
  • A proven track of at least 5 years working experience with common compliance and assurance frameworks such as SOC 2, ISO/IEC 27001, GDPR, HIPAA, FedRAMP, or similar international regulatory standards.
  • Relevant certifications are preferred but not required, including: CISA, CRISC, CISSP, CCSK, ISO 27001 Lead Implementer/Auditor, or related compliance or risk certifications.
  • Familiarity with common IT infrastructure, SaaS based cloud services, identity and access management concepts, and security tooling sufficient to assess control design and operational effectiveness (hands‑on administration is not required).
Job Responsibility
Job Responsibility
  • Coordinate the full compliance lifecycle, including gap analysis, remediation planning, audit execution, and continuous compliance monitoring.
  • Prepare the organization for new and evolving compliance frameworks by coordinating assessments, audits, self-assessments, and evidence collection and review activities.
  • Develop, maintain, and review compliance related documentation to support training, awareness, and sustained operational effectiveness.
  • Support the Revenue team by answering Security-related questions from customers and prospects.
  • Assist with curating content for ongoing Security training requirements, ensuring completion targets are met.
  • Collaborate with globally distributed stakeholders across Engineering, IT, Product, HR, Legal, and other business functions to support consistent implementation of compliance requirements.
  • Serve as a primary liaison for audit coordination, including facilitating interviews, walkthroughs, and evidence requests.
  • Provide guidance and training to internal teams on compliance initiatives and audit readiness.
  • Support adherence to Nintex governance, risk, and compliance standards by assisting with the creation, review and updates of information security policies and procedures.
  • Ensure compliance activities align with internal guidelines and approved risk management practices.
What we offer
What we offer
  • Global Gratitude and Recharge Days
  • Flexible, paid time off policy
  • Employee wellness programs and counseling resources
  • Meaningful peer recognition and awards
  • Paid parental leave
  • Invention/patenting assistance
  • Community impact, paid volunteer time, and opportunities
  • Intercultural learning and celebration
  • Multiple tools through which to learn and grow, and an incredible global community
  • Fulltime
Read More
Arrow Right
New

Senior Internal It Auditor

As a Senior IT Auditor, you will help ensure that our information security proto...
Location
Location
United States , Rochester
Salary
Salary:
75000.00 - 85000.00 USD / Year
wegmans.com Logo
Wegmans
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in related field
  • 3+ years' experience of auditing or equivalent
  • 3+ years' experience in analyzing large amounts of data
  • Professionalism in handling confidential and sensitive information
  • Strong computer skills, with knowledge of operation systems and database technology used in mid-to-large IT organizations
Job Responsibility
Job Responsibility
  • Perform in-depth technical analysis and testing of all related technologies to evaluate efficiency and effectiveness
  • Use data analysis tools to automate testing
  • develop techniques for continuous auditing and analyzing large volumes of data
  • Gather, interpret, and provide effective documentation of audit evidence including the ability to maintain documentation of observations, conclusions, recommendations, maintain summaries and index with cross-referencing for supervisory review
  • Prepare detailed reports on audit findings and develop actionable recommendations for management
  • Perform audit engagements as directed
  • identify, analyze, evaluate, and record the design and operating effectiveness of data controls as well as communicate recommendations effectively
  • Assist management in assessing the risks across functional areas
What we offer
What we offer
  • Paid time off (PTO)
  • Higher premium pay rates for working overtime, on Sundays, or on a recognized holiday
  • Health care benefits that provide a high level of coverage at a low cost to you
  • Retirement plan with a 401(k) match
  • A generous scholarship program
  • LiveWell Employee & Family program
  • Fulltime
Read More
Arrow Right

IT Audit Manager

Global Internal Audit provides independent, objective assurance to management an...
Location
Location
Poland
Salary
Salary:
15775.00 - 23000.00 PLN / Month
https://www.hsbc.com Logo
HSBC
Expiration Date
July 10, 2026
Flip Icon
Requirements
Requirements
  • A bachelor's degree or higher in computer science or a related field
  • 4+ years of IT-related experience, preferably within the financial services area, in Internal or External Audit, Risk Assurance, Internal Control position, ideally supported with a relevant certification (e.g. CISA, CIA), or IT operations, service management, software development and/or cyber security
  • An understanding of relevant regulatory frameworks and compliance requirements
  • Strong English writing and verbal communication skills with experience of presenting to senior stakeholders, adapting their style and approach to suit the audience, delivering difficult messages, and debating the significance of topics
  • The ability to analyse, review and visualise large amounts of data using data analytics
  • Strong curiosity and exceptional critical analysis skills to identify risks and drive continuous improvement within the organisation
  • Be a proactive team player, who leads by example and works constructively across Global Internal Audit
  • The ability to handle multiple projects or tasks simultaneously such as concurrent planning, fieldwork, or documentation for audits
Job Responsibility
Job Responsibility
  • Lead and support IT audits to evaluate the design and operating effectiveness of the internal control environment, and review proposed management actions to close identified gaps in business processes
  • Based on audit fieldwork, draft audit findings and reports and align those with key stakeholders within Group Internal Audit
  • Presentation of audit results to key stakeholders, including senior management
  • Ensure that the results and documentation of audit work meet the required internal standards and expectations of external stakeholders such as regulators
  • Monitor and validate the measures taken by management to remediate audit issues
  • Contribute to and support the development of auditing tools via data analytics or Artificial Intelligence
  • Contribute to continuous monitoring activities in order to keep an up-to-date risk assessment of various business activities
  • and maintaining current knowledge of emerging industry and regulatory topics
What we offer
What we offer
  • Additional bonuses for recognition awards
  • Multisport card
  • Private medical care
  • Life insurance
  • One-time reimbursement of home office set-up (up to 800 PLN)
  • Cafeteria platform
  • Employee assistance program
  • Additional contributions to PPK scheme
  • Corporate parties & events
  • CSR initiatives
  • Fulltime
!
Read More
Arrow Right

Global Senior Security Manager

We are seeking a seasoned security leader to partner with our CISO in protecting...
Location
Location
United States , New York
Salary
Salary:
150000.00 - 210000.00 USD / Year
alterdomus.com Logo
Alter Domus
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years in cybersecurity with at least 5 years in a leadership role managing global, cross-functional teams
  • Proven track record of representing security at C-suite and board level, translating complex risk into clear business narrative
  • Experience in financial services or a similarly regulated industry (FCA, PRA, DORA, SOX, PCI-DSS)
  • Familiarity with deploying AI security frameworks such as NIST AI RMF 1.0, MITRE ATLAS, and financial services AI governance standards
  • Practical knowledge of implementing AI-powered security tools to automate detection, response, and guardrail enforcement
  • Familiarity with AI model risk, LLM threat surfaces, data poisoning, prompt injection, and adversarial ML attack vectors
  • Familiarity with enterprise security tools
  • Broad exposure to endpoint protection, vulnerability management, CSPM, DLP, and email security platforms
  • CISSP, CISM, or CRISC — one or more preferred
  • CCSP or equivalent cloud security credential
Job Responsibility
Job Responsibility
  • Support CISO in key decision making and regulatory meetings — presenting risk posture, programme status, and strategic recommendations with clarity and confidence
  • Build, mentor, and manage high-performing, globally distributed security teams spanning multiple time zones and functions
  • Define and execute the enterprise security roadmap aligned with business strategy and applicable regulatory requirements (FCA, PRA, DORA, SOX, PCI-DSS)
  • Lead end-to-end transformation of Identity & Access Management (IAM) and Privileged Access Management (PAM), including strategy, tooling selection, and programme delivery
  • Drive implementation of an Identity Governance & Administration (IGA) framework — encompassing joiner/mover/leaver processes, role engineering, access certification, and policy enforcement
  • Oversee deployment and maturation of PAM controls, credential vaulting, just-in-time access, and session monitoring to eliminate over-privileged accounts across the enterprise
  • Establish access management metrics and KPIs reported to executive leadership and regulators
  • Lead the Zero Trust Architecture (ZTA) transformation programme — defining principles, technology roadmap, and phased rollout across on-premises, cloud, and hybrid environments
  • Drive AI-augmented network and security architecture, leveraging machine learning for anomaly detection, automated policy enforcement, and predictive threat modelling
  • Build and operationalise a Network Operations (NetOps) operating model — defining governance, runbooks, escalation paths, and SLA frameworks for a globally resilient network
What we offer
What we offer
  • Support for professional accreditations
  • Flexible arrangements, generous holidays, plus an additional day off for your birthday
  • Continuous mentoring along your career progression
  • Active sports, events and social committees across our offices
  • 24/7 support available from our Employee Assistance Program
  • The opportunity to invest in our growth and success through our Employee Share Plan
  • Plus additional local benefits depending on your location
  • Fulltime
Read More
Arrow Right

Senior IT Security Compliance Engineer

The Senior IT Security Compliance Engineer is responsible for developing, mainta...
Location
Location
Egypt , Cairo
Salary
Salary:
Not provided
arrow.com Logo
Arrow Electronics
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong knowledge of information security principles, risk management, and compliance frameworks, with a solid understanding of ISO 27001 requirements and controls
  • Hands-on experience supporting audits and compliance programs for frameworks such as ISO 27001, SOC 2, CMMC, NIST, or similar
  • GRC-related certification (e.g., CISSP, CISA, CRISC, ISO 27001 Lead Implementer/Lead Auditor) is preferred
  • Experience working in SaaS or technology-driven environments is highly desirable
  • Familiarity with cloud computing platforms and cloud security principles
  • Excellent written and verbal communication skills, with proven ability to produce clear, high-quality security documentation and reports
  • Minimum of 5 years of professional experience in cybersecurity, information security, or compliance-related roles
  • Bachelor’s degree in Computer Engineering, Computer Science, Information Security, or a related field
Job Responsibility
Job Responsibility
  • Develop, review, and maintain IT security policies, standards, procedures, and guidelines in alignment with industry best practices and regulatory requirements
  • Lead and coordinate compliance initiatives for security frameworks and standards, including but not limited to ISO 27001, SOC 2, CMMC, NIST, and internal security assessments
  • Manage audit readiness activities, including documentation preparation, evidence collection, stakeholder coordination, and remediation tracking for internal and external audits
  • Respond to customer and partner security questionnaires, ensuring accurate, consistent, and timely responses
  • Conduct periodic security and risk assessments to evaluate the effectiveness of security controls and identify improvement opportunities
  • Track, manage, and follow up on vulnerability remediation efforts in collaboration with IT, engineering, and operations teams
  • Prepare and deliver security metrics, compliance reports, and executive-level summaries
  • Provide security awareness, training, and education to employees to promote a strong security culture across the organization
  • Support continuous improvement of governance, risk, and compliance (GRC) processes and tooling
  • Fulltime
Read More
Arrow Right