IT Audit Manager

At Infoblox, every breakthrough begins with a bold “what if.” 
What if your ideas could ignite global innovation? 
What if your curiosity could redefine the future?

We invite you to step into the next exciting chapter of your career journey. Bring your creativity, drive, your daring spirit, and feel what it’s like to thrive on a team big enough to make an impact, yet small enough to make a difference. Our cloud-first networking and security solutions already protect 70% of the Fortune 500, and we’re looking for creative thinkers ready to push that influence even further. Join us and discover how far your bold “what if” can take the world, your community, and your career.

How we empower our people is extraordinary: we’re recognized as a Glassdoor Best Place to Work 2025, Great Place to Work-Certified in five countries, and honored by Cigna as a Healthy Workforce honors for three consecutive years; and what we build is world class: named CybersecAsia’s Best in Critical Infrastructure 2024 — clear evidence that when first-class technology meets empowered talent, remarkable careers take shape. So, what if the next big idea, and the next great career story, comes from you? Become the force that turns every “what if” into “what’s next.”

In a world where you can be anything, Be Infoblox.

IT Audit Manager

We have an opportunity for an IT Audit Manager to join our Governance, Risk & Compliance (GRC) team, based in Tacoma, WA reporting to the Director, Governance, Risk & Compliance. In this pivotal role, you will execute and enhance Infoblox’s IT audit and compliance program, helping ensure our technology and security practices align with leading external frameworks and internal risk standards. You’ll work closely with partners across IT, Information Security, Engineering, and Enterprise Risk Management to plan and perform audits, support external assurance engagements (such as SOC 2 and ISO 27001), and drive continuous control improvement.

Be a Contributor — What You’ll Do

• Execute IT and security internal audits across applications, infrastructure, and processes, including planning scope and objectives, performing walkthroughs, testing controls, documenting workpapers, and drafting findings and recommendations
• Support the internal audit plan by performing risk-based testing of IT general controls, security controls, and key technology processes, aligned to frameworks such as SOC 2 Trust Services Criteria, ISO 27001, NIST CSF, and related requirements
• Coordinate external audits and assessments (e.g., SOC 2 Type II, ISO 27001 certification/surveillance audits, NIST CSF assessments, IRAP), including scheduling activities, gathering and validating evidence, supporting control owner interviews, and tracking requests to closure
• Manage and coordinate customer assessments, including responding to questionnaires, providing information as required, and attending customer calls 
• Lead a team of Technology Audit Analysts to perform related audit activities and maintenance. Delegate responsibilities and assignments to Analysts as needed
• Maintain and enhance the IT control library, ensuring controls are mapped to relevant standards and kept current as systems, processes, and regulatory expectations evolve
• Manage audit evidence and documentation, ensuring completeness, accuracy, and consistency across systems and repositories; help keep the organization audit-ready at all times
• Document audit observations and issues in a clear, risk-focused way, working with control owners to define action plans, target dates, and realistic remediation steps, and follow up through closure
• Partner with cross-functional teams (IT, Security, Engineering, Legal, Enterprise Risk Management, and business stakeholders) to understand processes, identify control gaps, and recommend balanced improvements that support both security and business objectives
• Contribute to policy, standards, and process improvements by translating audit results and industry best practices into practical updates to procedures, runbooks, and guidelines
• Prepare clear, concise audit communications, including planning materials, status updates, and final reports or presentations summarizing scope, approach, results, and agreed actions for stakeholders at various levels
• Stay current on emerging risks and frameworks, monitoring changes to standards, regulations, and audit methodologies, and incorporating those into our audit programs and control expectations as appropriate
• Promote a culture of security, compliance, and accountability by educating stakeholders on audit requirements, control expectations, and lessons learned from completed audits

Be Prepared — What You Bring

• 12 plus years of experience in IT audit, IT compliance, information security, or a related risk/control-focused role, preferably in a cloud-first or SaaS environment
• Hands-on experience performing or supporting audits aligned to frameworks such as SOC 2 Type II and ISO/IEC 27001, with exposure to NIST CSF or similar security standards strongly preferred
• Experienced in managing small teams, delegating tasks, providing feedback, and tracking projects and responsibilities across the team
• Additional experience interfacing with customers on annual assessments and providing information in line with company policies
• One or more relevant certifications such as CISA, ISO 27001 Internal or Lead Auditor, CRISC, CISM, or CISSP (or a strong commitment to obtain relevant certifications within a defined timeframe)
• Solid understanding of IT general controls (ITGCs), application controls, and foundational information security principles (identity and access management, change management, backup and recovery, logging and monitoring, configuration management, etc.)
• Familiarity with cloud and SaaS architectures and their impact on control design and testing (e.g., use of AWS, Azure, or similar environments; shared responsibility models)
• Experience using GRC or audit management tools to track controls, evidence, testing, and remediation tasks (e.g., Archer, ServiceNow GRC, OneTrust, or similar) is a plus
• Demonstrated ability to plan and execute multiple audits or workstreams in parallel, manage deadlines, and reprioritize in response to changing risk or business needs
• Strong organization skills and attention to detail, especially in managing large volumes of evidence and documentation
• Proven ability to analyze complex technical environments, identify control deficiencies and process inefficiencies, and recommend practical, risk-based improvements
• Excellent written and verbal communication skills; able to explain audit concepts and results in clear, business-relevant terms for both technical and non-technical audiences
• Comfortable facilitating meetings, walkthroughs, and readouts with stakeholders ranging from individual contributors to senior leaders
• Bachelor’s degree in Information Systems, Computer Science, Cybersecurity, Accounting/Information Systems, or a related field, or equivalent practical experience

Be Successful — Your Path

First 90 Days: Immerse in our culture, connect with mentors (Blox Buddies), and map the systems and meet with key stakeholders that rely on your work. Discuss and create short/long term goals.

Six Months: Own end-to-end execution of selected audits or audit workstreams (e.g., ISO 27001 control testing, SOC 2 readiness or interim testing), from planning through reporting, with appropriate support and review. Help refine audit playbooks, standard workpapers, and evidence request lists to streamline preparation and reduce friction for control owners. Contribute to updating the rolling audit plan and risk assessment based on insights from completed work.

One Year: Be regarded as a go-to IT audit specialist who understands both our technology stack and our compliance obligations, and who can be trusted to lead complex audit activities with minimal oversight. Demonstrate measurable impact through improved audit readiness, reduced repeat findings, more efficient evidence collection, and stronger partnership with control owners. Help identify and support opportunities to expand or mature the audit and compliance program (e.g., new frameworks, new products, or new regions, as applicable).

Belong— Your Community

Our culture thrives on inclusion, rewarding the bold ideas, curiosity, and creativity that move us forward. In a community where every voice counts, continuous learning is the norm. So, whether you code, create, sell, or care for customers, you’ll grow and belong here. 

Be Rewarded — Benefits That Help You Grow, Thrive, Belong

• Comprehensive health coverage, generous PTO, and flexible work options 
• Learning opportunities, career-mobility programs, and leadership workshops 
• Sixteen paid volunteer hours each year, global employee resource groups, and a “No Jerks” policy that keeps collaboration healthy 
• Modern offices with EV charging, healthy snacks (and the occasional cupcake), plus hackathons, game nights, and culture celebrations 
• Charitable Giving Program supported by Company Match 
• We practice pay transparency and reward performance. Offers reflect role location, internal equity, experience, skills, education, and certifications. Base salary for this position: $119,600 - $180,290 plus corporate bonus potential

Ready to Be the Difference?

Infoblox is an Affirmative Action and Equal Opportunity Employer, and all qualified applicants will receive consideration for employment without regard to race, color, religion, gender, sexual orientation, national origin, genetic information, age, disability, veteran status, or any other legally protected basis
#LI-MA1
#LI-Hybrid