Senior Security Auditor
Share
Job Location:
San Mateo, CA - USA
Monthly Salary:
Not Disclosed
Posted on:
30+ days ago
Vacancies:
1 Vacancy
Job Summary
As a Senior Security Auditor on the Internal Audit team you will lead IT risk evaluations audits and readiness exercises around Robloxs internal technology environment supporting information security compliance and other operational objectives. You will also develop and execute a comprehensive audit program for vendor risk management. We are looking for a qualified security auditor with demonstrated technical skills. You will report to the IT Audit Senior Manager and partner with the Engineering Information Security Legal Trust & Safety and Finance teams at Roblox.
This is a hybrid position (Tues/Wed/Thurs) based in our San Mateo office.
You will:
- Conduct technical security audits in areas including data retention backup and recovery production engineering security cloud security data security vulnerability management end-point security network security etc.
- Conceive and lead ad hoc analyses of IT & Information security data to support risk-based operational audits
- Develop and execute the vendor audit program to address risks throughout vendor management lifecycle
- Establish repeatable methods to ensure consistency in results maintain an up-to-date understanding of evolving regulatory landscapes and help develop a robust internal knowledge base on security compliance.
- Guide the identification and implementation of new processes/controls required by regulatory compliance frameworks and the remediation of corrective action plans relating to audit findings
- Develop audit reports by summarizing audit findings and associated risks identifying action owners and aligning on remediation plans with management.
- Work with XFN teams (including Engineering Information Security Legal Trust & Safety and Finance) to help create integrated compliance requirements for Roblox
- Assist with internal automation efforts and tool implementations
You have:
- Bachelors degree in Information Technology Information Systems Computer Science or a related technical field of study
- 5 years professional IT audit experience
- 2 years security audit or security compliance experience
- Solid technical knowledge in multiple security compliance frameworks including: NIST ISO 27001 SOC 2 PCI DSS
- Compliance and risk management skills CISSP CISM CIPP CISA Certification
- Beginner to intermediate knowledge of scripting languages such as structured query language Python Shell scripting etc.)
Required Experience:
Senior IC
Key Skills
- Auditing
- Accounting Software
- Data Analytics
- GAAP
- Accounting
- Analysis Skills
- SOX
- Financial Analysis
- Financial Report Interpretation
- Internal Audits
- Mentoring
- GAAS
About Company
Roblox is the ultimate virtual universe that lets you create, share experiences with friends, and be anything you can imagine. Join millions of people and discover an infinite variety of immersive experiences created by a global community!
