Are you looking to join a progressive audit organization with dynamic people working to solve complex technology and business problems? We're looking for to add to our Internal Audit team focused on our engineering programs. This individual contributor position is directly responsible for executing projects.

Microsoft’s mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others, and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond.

In alignment with our Microsoft values, we are committed to cultivating an inclusive work environment for all employees to positively impact our culture every day.

Responsibilities

• The Senior IT Audit Manager is responsible for evaluating risks and controls for software development, service operation, IT infrastructure, security, and related processes. This evaluation will be accomplished by conducting internal audit projects to include the communication of observations, risks, recommendations, and conclusions reached, as well as providing consulting services regarding risk and controls on a wide range of projects and corporate initiatives.

• Lead and coordinate audits. Drive planning by partnering with the business to ensure that the key risks will be addressed by the audit project using technical knowledge of information systems. Develop and oversee the execution of the test plan for a specific project using in-depth knowledge of information systems and technical excellence.

• Implement improvements for complex audit documents, plans, and testing strategies.

• Conduct reviews in highly technical areas of current/emerging technologies including artificial intelligent, various cloud environments, security, networking, Windows, and Unix.

• Remain current and increase knowledge in the areas of auditing, business, company products and company information and Microsoft technologies, applications and other related technologies, utilizing self-study and/or continuing education efforts.

• Develop draft audit reports by identifying and gathering support for potential issues, and recommending solutions.

• Utilize departmental audit systems to manage projects, work papers, risk assessment, reporting and reporting follow-up.

• Communicate with departmental representatives and client management regarding the project status.

• Coordinate with external auditors (as needed), and work with outside contractors with respect to specific IT audit engagements.

• Establish and maintain customer relationships with internal stakeholders, managers and staff.

Qualifications

Required / Minimum Qualifications:

• Bachelor's Degree in Business, Computer Science, Engineering, or related field AND 5+ years auditing, security, privacy, control and compliance, or related experience

• OR equivalent experience.

Preferred qualifications:

• A BS/BA degree, preferably in information systems, computer science, engineering or other related IT field or a minimum of 5 years of experience in hardware or software product development, IT audit, IT Assurance or closely related field, security operations.

• Knowledge of external leading risk and controls frameworks such as COBIT (Control Objectives for Information and related Technology), ISO27000, NIST, and IT related internal controls

• Professional certification such as CISSP, GIAC, MCP, CCNA, CISA, or CIA

• Experience with cloud operations, networks, security and specialized skills and experience

• Demonstrated communication skills and the ability to effectively present recommendations to senior management

• Proven team player with demonstrated skills working on effective and self-directed teams.

• Ability to travel domestically and internationally for 2-3 week periods up to 20% of the year.

• Demonstrated understanding of concepts related to information systems audit, information security, general IT controls, application controls and technology risks.

• Ability to communicate highly technical issues to both technical and non-technical audiences.

Information Systems Auditing IC4 - The typical base pay range for this role across the U.S. is USD $94,600 - $183,800 per year. There is a different range applicable to specific work locations, within the San Francisco Bay area and New York City metropolitan area, and the base pay range for this role in those locations is USD $122,000 - $200,500 per year.

Certain roles may be eligible for benefits and other compensation. Find additional benefits and pay information here: https://careers.microsoft.com/us/en/us-corporate-pay

Microsoft will accept applications for the role until October 9, 2024 .

Microsoft is an equal opportunity employer. Consistent with applicable law, all qualified applicants will receive consideration for employment without regard to age, ancestry, citizenship, color, family or medical care leave, gender identity or expression, genetic information, immigration status, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran or military status, race, ethnicity, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable local laws, regulations and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application process, read more about requesting accommodations (https://careers.microsoft.com/v2/global/en/accessibility.html) .