Marqeta - Technology Internal Audit Manager
Employment Type: [Not Specified]
Location Type: Remote (United States) or Oakland, CA
Salary: [Not Specified]
Position Overview
Marqeta is seeking a highly motivated and experienced Technology Internal Audit Manager to lead our SOX IT compliance program. This role is crucial in ensuring the integrity of our technology operations that support financial reporting. You will be responsible for planning, executing, and evaluating IT SOX audits, coordinating with external auditors and internal stakeholders, and enhancing the effectiveness of Marqeta's IT control environment. While not a people management role, you will oversee co-sourced resources and drive program execution and continuous improvement.
Responsibilities
- Lead and manage the SOX IT compliance program: This includes scoping, planning, execution, and documentation of IT General Controls (ITGC) testing across Marqeta’s critical financial systems and supporting infrastructure.
- Assess control effectiveness: Evaluate the design and operating effectiveness of SOX-relevant IT controls in accordance with PCAOB standards, ensuring alignment with frameworks such as COSO and COBIT.
- Collaborate cross-functionally: Work closely with IT, Security, Engineering, and Finance teams to validate control ownership, assess risk, identify emerging technologies, and drive timely remediation of deficiencies.
- Identify risks: Pinpoint risks related to change management, access provisioning, IT operations, system development, and third-party hosted environments, particularly in cloud-based and DevOps ecosystems.
- Coordinate with external auditors: Act as the primary liaison for IT audit matters, supporting walkthroughs, testing cycles, and issue resolution.
- Report on findings: Provide clear, executive-ready reporting on SOX control effectiveness, audit findings, and remediation status to senior leadership and key stakeholders.
- Drive continuous improvement: Enhance the SOX IT program by improving control automation, streamlining evidence collection, and supporting the maturity of compliance capabilities.
Requirements
- Experience: 6+ years of progressive responsibility in SOX IT compliance, IT risk assessment, and internal controls testing, preferably within the FinTech or highly technology-driven industries.
- SOX ITGC Proficiency: Demonstrated experience in managing end-to-end SOX ITGC, SOC1 reviews, key reports, and automated control testing cycles.
- Technical Expertise: Deep knowledge of Identity and Access Management (IAM), Change Management, Backup/Recovery, and IT Operations across various system types (homegrown, traditional, cloud-native).
- Cloud & DevOps Knowledge: Skilled in evaluating control effectiveness in cloud environments (e.g., AWS, Azure) and DevOps pipelines, with a strong ability to identify SOX-relevant risks in dynamic technical infrastructure.
- Framework Knowledge: Well-versed in applying frameworks like COSO, COBIT, and NIST to ensure IT control environments meet compliance and audit standards.
- Communication Skills: Strong ability to translate technical risks into clear, actionable insights for senior leadership, external auditors, and cross-functional teams.
- Organizational Skills: Highly organized, detail-oriented, and confident in owning program delivery and driving continuous improvement.
Nice-to-Haves
- Professional Certifications: CISA, CISM, CIA, or CISSP.
- Project/Program Management: Strong skills in managing audit timelines, coordinating stakeholders, and driving complex SOX initiatives.
Application Instructions
[Not Specified]
Company Information
Marqeta is a global leader in modern card issuing and payment processing, empowering innovators to build flexible and powerful payment experiences. We are committed to a "Flexible First" work environment.