Summary of Role:

As a key member of the Corporate Audit management team, the Technology Audit Manager is responsible for the audit and advisory services for the company's IT organization. This role will lead the development and execution of assurance and advisory engagements over the Information Technology environment of the company. This position collaborates closely with the IT, Digital and Information Security organizations of the company to ensure systems and processes support the business and reporting objectives of the company.

The Technology Audit Manager role will report directly to the VP for Corporate Audit.

Essential Duties & Responsibilities:

• Conduct comprehensive audits of IT systems, networks, and infrastructure to identify vulnerabilities, weaknesses, and areas for improvement.
• Collaborate with IT, Finance, business units and External Auditors to identify, assess IT risks and controls in compliance with requirements such as Sarbanes-Oxley, third-party providers, and relevant regulatory standards.
• Evaluate the effectiveness of IT controls, policies, and procedures in mitigating risks related to data security, privacy, and integrity, including review (and conduct, if needed) of ITGCs, IT application controls (ITACs), and key reports. This may include the development of test plans, evaluation of control issues/ observations, improvement opportunities, timely communication, and preparation of deliverables, presentations.
• Conduct IT risk assessments to identify enterprise-wide risks originating from the IT environment of the company. This may include strategic, operations, compliance and reputational risks and threats.
• Develop an agile audit plan to address identified risks in the company’s IT environment.
• Provide guidance and support to internal stakeholders on ways to improve general IT controls, information security and data privacy processes. This includes providing consulting services as management address control deficiencies or make significant process changes (e.g., implementation of new systems).
• Document audit results, conclusions, and recommendations in clear and concise manner for presentation to internal and external stakeholders and Audit Committee of the Board.
• Monitor completion of management action plans, SOX deficiency remediation plans to ensure timely resolution of audit and compliance issues.
• Stay abreast of regulatory changes and industry best practices to ensure ongoing compliance with relevant regulatory requirements (US SEC, SOX, Data Privacy, PCI, GLBA and other Financial Services regulatory requirements).
• Stay current on emerging IT trends such as GenAI and IT leading practices and recommend a proactive approach to leverage opportunities to improve the overall IT Governance of the company.
• Compliance with ISPPIA (International Standards for Professional Practice of Internal Auditing) requirements (Independence, Code of Ethics. etc)
• Extensive interaction with management at all levels of the organization.

Required Qualifications:

• Bachelor's degree in information technology, computer science, management information systems or a related field.
• Minimum of 8 years of experience in IT audit, IT SOX compliance and risk management. At least 4 years of experience in managing IT audit engagements.
• Proficiency in auditing IT systems, networks, and infrastructure, including knowledge of auditing tools and techniques.
• Relevant experience or knowledge in Cybersecurity and Information Security programs.
• Certification in one or more of the following: Certified Information Systems Auditor (CISA), Certified Information Systems Manager (CISM), Certified Information Systems Security Professional (CISSP), Certified Internal Auditor (CIA), or Certified Public Accountant (CPA)
• Strong understanding of IT governance frameworks, control standards, and regulatory requirements (e.g., COSO, COBIT, ISO 27001, NIST Cybersecurity and Privacy Framework)
• Excellent written, oral communication skills and interpersonal skills are critical.
• Must exhibit the ability to balance multiple, high priority projects simultaneously.
• Agile, flexible, resilient on working arrangement as maybe required by circumstances such as working remotely and occasional business travel.

Please note the pay range provided is a good faith estimate for this position only and in the geographical location noted. The base pay for this position ranges from $128,500/year to $192,700/year. Pay is based on several factors including market location and may vary depending on job-related knowledge, skills, and experience. Dependent on the position offered, other forms of compensation may be provided as part of a total compensation package including annual bonus eligibility, short and long-term incentives, and a comprehensive and competitive benefits program which includes health insurance coverage, employee wellness, life and disability insurance, a retirement savings plan, paid holidays, paid time off, and so much more. For more information, please visit our benefits site athttps://us.sunpower.com/employees-benefits.