IT Audit Manager
Austin, TX
Finance – Corporate Audit and Advisory /
Full-Time /
Hybrid
Do you want to change the world? We do, too.
SunPower is changing the way our world is powered every day with a passionate and driven team in North America and the Philippines. SunPower provides world-class solar solutions to residential customers across the U.S. with a commitment to a superior customer experience. We welcome forward thinkers, freedom chasers and all those demanding better, cleaner energy to join us.
Summary of Role:
As a key member of the Corporate Audit management team, the Technology Audit Manager is responsible for the audit and advisory services for the company's IT organization. This role will lead the development and execution of assurance and advisory engagements over the Information Technology environment of the company. This position collaborates closely with the IT, Digital and Information Security organizations of the company to ensure systems and processes support the business and reporting objectives of the company.
The Technology Audit Manager role will report directly to the VP for Corporate Audit.
Essential Duties & Responsibilities:
- Conduct comprehensive audits of IT systems, networks, and infrastructure to identify vulnerabilities, weaknesses, and areas for improvement.
- Collaborate with IT, Finance, business units and External Auditors to identify, assess IT risks and controls in compliance with requirements such as Sarbanes-Oxley, third-party providers, and relevant regulatory standards.
- Evaluate the effectiveness of IT controls, policies, and procedures in mitigating risks related to data security, privacy, and integrity, including review (and conduct, if needed) of ITGCs, IT application controls (ITACs), and key reports. This may include the development of test plans, evaluation of control issues/ observations, improvement opportunities, timely communication, and preparation of deliverables, presentations.
- Conduct IT risk assessments to identify enterprise-wide risks originating from the IT environment of the company. This may include strategic, operations, compliance and reputational risks and threats.
- Develop an agile audit plan to address identified risks in the company’s IT environment.
- Provide guidance and support to internal stakeholders on ways to improve general IT controls, information security and data privacy processes. This includes providing consulting services as management address control deficiencies or make significant process changes (e.g., implementation of new systems).
- Document audit results, conclusions, and recommendations in clear and concise manner for presentation to internal and external stakeholders and Audit Committee of the Board.
- Monitor completion of management action plans, SOX deficiency remediation plans to ensure timely resolution of audit and compliance issues.
- Stay abreast of regulatory changes and industry best practices to ensure ongoing compliance with relevant regulatory requirements (US SEC, SOX, Data Privacy, PCI, GLBA and other Financial Services regulatory requirements).
- Stay current on emerging IT trends such as GenAI and IT leading practices and recommend a proactive approach to leverage opportunities to improve the overall IT Governance of the company.
- Compliance with ISPPIA (International Standards for Professional Practice of Internal Auditing) requirements (Independence, Code of Ethics. etc)
- Extensive interaction with management at all levels of the organization.
Required Qualifications:
- Bachelor's degree in information technology, computer science, management information systems or a related field.
- Minimum of 8 years of experience in IT audit, IT SOX compliance and risk management. At least 4 years of experience in managing IT audit engagements.
- Proficiency in auditing IT systems, networks, and infrastructure, including knowledge of auditing tools and techniques.
- Relevant experience or knowledge in Cybersecurity and Information Security programs.
- Certification in one or more of the following: Certified Information Systems Auditor (CISA), Certified Information Systems Manager (CISM), Certified Information Systems Security Professional (CISSP), Certified Internal Auditor (CIA), or Certified Public Accountant (CPA)
- Strong understanding of IT governance frameworks, control standards, and regulatory requirements (e.g., COSO, COBIT, ISO 27001, NIST Cybersecurity and Privacy Framework)
- Excellent written, oral communication skills and interpersonal skills are critical.
- Must exhibit the ability to balance multiple, high priority projects simultaneously.
- Agile, flexible, resilient on working arrangement as maybe required by circumstances such as working remotely and occasional business travel.
Don’t meet every single requirement? Studies have shown that women and underrepresented minorities are less likely to apply to jobs unless they meet every single qualification. At SunPower, we are dedicated to building a diverse, inclusive, and authentic workplace, so if you’re excited about this role but your past experience doesn’t align perfectly with every qualification in the job description, we encourage you to apply anyway. You may be just the right candidate for this or other roles.
Equal Employment Opportunity
The Company is an equal employment opportunity employer and makes employment decisions, including but not limited to, hiring, firing, promotion, demotion, training, and/or compensation, on the basis of merit. Employment decisions are based on an individual’s qualifications as they relate to the job under consideration. The Company’s policy prohibits unlawful discrimination based on sex (which includes pregnancy, childbirth, breastfeeding, or related medical conditions, the actual sex of the individual, or the gender identity or gender expression), race, color, religion, including religious dress practices and religious grooming practices, sexual orientation, national origin, ancestry, citizenship, marital status, familial status, age, physical disability, mental disability, medical condition, genetic information, protected veteran or military status, or any other consideration made unlawful by federal, state or local laws, ordinances, or regulations. The Company is committed to complying with all applicable laws providing equal employment opportunities. This commitment applies to all persons involved in the operations of the Company and prohibits unlawful discrimination by any employee of the Company, including supervisors and co-workers.
Accommodation for Applicants to SunPower Corporation
SunPower Corporation is an Equal Employment Opportunity / Affirmative Action employer and provides reasonable accommodation for qualified individuals with disabilities and disabled veterans in job application procedures. If you have any difficulty using our online system and you need a reasonable accommodation due to a disability, you may use the following alternative email address to contact us about your interest in employment at SunPower Corporation: jobs@sunpower.com. Please indicate in the subject that line of your email that you are requesting accommodation. Only candidates being considered for a position who require an accommodation will receive a follow-up response.
NOTICE TO ALL APPLICANTS AND EMPLOYEES
Availability of Affirmative Action Plan for Review
SunPower is a federal government contractor. As a part of the Company’s obligations under law, it must develop a written Affirmative Action Program (AAP) for the Disabled, Recently Separated Veterans, Armed Forces Service Medal Veterans, Disabled Veterans and Active Duty Wartime Or Campaign Badge Veterans and for Women and Minorities as specified by law. Non-confidential and non-proprietary aspects of the AAP are available for inspection by applicants and employees, consistent with applicable law, which will be made available during office hours by contacting the EEO Officer.
