IT Auditor

Are you interested in joining a forward-thinking audit organization where dynamic individuals collaborate to address complex technology and business challenges? Our Internal Audit team is seeking a motivated professional with a focus on engineering programs. In this individual contributor IT Auditor role, you will be directly responsible for executing a variety of projects.

As an IT Auditor, you will play a critical role in evaluating risks and controls related to software development, artificial intelligence (AI), service operations, IT infrastructure, security, and similar processes . Your work will involve conducting internal audit projects, communicating observations and risks, offering recommendations, and delivering well-supported conclusions. Additionally, you will provide consulting services on risks and controls across a range of projects and corporate initiatives.

Microsoft's mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond.

Responsibilities:

• Conduct comprehensive reviews of highly technical areas, including emerging technologies such as artificial intelligence, as well as various cloud environments, security, networking, Windows, and Unix platforms.
• Execute risk bas ed IT audit engagements following recognized frameworks, such as COBIT, ISO27000, and NIST. This includes all phases of the audit process: planning, fieldwork, reporting, and remediation follow-up.
• Stay informed and continuously expand your knowledge in auditing, business, company products, Microsoft technologies, and other relevant technical areas through self-study and ongoing education.
• Prepare draft audit reports by identifying , gathering, and supporting potential issues and recommending appropriate solutions .
• Leverage departmental audit systems to manage projects, organize work papers, perform risk assessments, and oversee reporting and follow-up activities.
• Communicate regularly with departmental representatives and client management to provide updates on project status.
• Coordinate with external auditors when necessary and collaborate with outside contractors on specific IT audit engagements.
• Establish and maintain proficient relationships with internal stakeholders, including managers and staff.
• Be prepared to travel up to 20% of the year, for periods of 2 to 3 weeks at a time, in support of IT audit schedules both domestically and internationally.
• Embody our culture and values

Qualifications:

Minimum Qualifications

• Bachelor's Degree in Business, Computer Science, Engineering, or related field AND 3+ years auditing, security, privacy, control and compliance, or related experience
  • OR equivalent experience.

• As listed in the job responsibilities, able to travel domestically and internationally for 2-3 week periods up to 20% of the year.
• 2+ years of experience leading or supporting IT audit engagements from initial planning through final reporting, including direct involvement with audit frameworks and regulatory compliance requirements.

Preferred Qualifications

• A BS/BA degree, preferably in information systems, computer science, engineering, or a related IT discipline, or a minimum of 5 years of experience in hardware or software product development, IT audit, IT assurance, a closely related field, or security operations.
• Familiarity with leading external risk and controls frameworks, such as COBIT (Control Objectives for Information and Related Technology), ISO27000, NIST, and IT-related internal controls.
• Experience in managing multiple audit cycles and working directly with control owners to identify , document, and address control gaps.
• Possession of a professional certification such as CISSP, GIAC, MCP, CCNA, CISA, CIA, AZ-500, or AZ-104.
• Experience with cloud operations, networking, security, software development methodologies, and specialized areas such as vulnerability management, secrets management, PKI, and IDS.
• General understanding of data centers, cloud services, and emerging developments in Artificial Intelligence (AI).
• Experience conducting data center audits and keeping abreast of advancements in Artificial Intelligence (AI).
• Solid understanding of concepts related to information systems audit, information security, general IT controls, application controls, and technology risks.
• Ability to communicate complex technical issues effectively to both technical and non-technical audiences.
• Demonstrated success as a team player, with the ability to work effectively as part of self-directed and collaborative teams.

Information Systems Auditing IC3 - The typical base pay range for this role across the U.S. is USD $76,800 - $151,900 per year. There is a different range applicable to specific work locations, within the San Francisco Bay area and New York City metropolitan area, and the base pay range for this role in those locations is USD $100,800 - $168,000 per year.

Certain roles may be eligible for benefits and other compensation. Find additional benefits and pay information here: ;br>
Microsoft will accept applications and processes offers for these roles on an ongoing basis.

Microsoft is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable laws, regulations and ordinances. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request via the Accommodation request form .

Benefits/perks listed below may vary depending on the nature of your employment with Microsoft and the country where you work.