Sr Audit Manager, Technology Risk and Assurance

## The group you\u2019ll be a part of\n\n \n\nThe Global Finance Group drives financial strategies based on expert understanding of Lam\u0027s breakthrough technologies, the semiconductor market, and the global business environment. They manage our company\u0027s financials and relationships with our investor community to ensure we have the strong financial foundation to fuel innovation and growth.\n\n \n\n## The impact you\u2019ll make\n\nThis position reports to the Director, Internal Audit, based in the US. As an IT Audit Manager or Senior Manager, you will lead, manage, and develop a team of IT auditors in the planning and execution of IT, cybersecurity, and technology risk audits using a risk-based methodology. You will evaluate the effectiveness of IT processes, controls, and systems, recommend opportunities for improvement, and drive best practices across the organization. The ideal candidate will have deep expertise in IT audit principles, cybersecurity, and regulatory requirements, as well as experience leveraging data analytics and automation to enhance audit efficiency and insight. You will oversee IT SOX testing, manage audit teams, and communicate complex technical topics to diverse audiences. The IT Audit Manager will proactively seek information, problem solve, and foster a culture of continuous improvement, collaboration, and professional skepticism.\n\n## What you\u2019ll do\n\n * Lead, manage, and mentor a team of IT auditors, providing coaching, feedback, and professional development opportunities.\n * Oversee the planning, scoping, and execution of IT, cybersecurity, and technology risk audits, including risk assessment and audit program development.\n * Allocate resources, set priorities, and ensure timely completion of audit projects.\n * Perform walkthroughs with IT process owners to identify key processes, controls, and gaps.\n * Design and execute audit procedures to assess IT risks, including ITGCs, ITACs, cybersecurity, and data privacy.\n * Oversee and review IT SOX controls testing and ensure compliance with SOX 404 requirements.\n * Develop and implement data analytics and automation to support IT audits, investigations, and continuous monitoring.\n * Evaluate IT system configurations, access controls, change management, and segregation of duties.\n * Assess cybersecurity controls, incident response, and vulnerability management.\n * Prepare clear, concise, and timely audit documentation and reports consistent with project milestones.\n * Communicate findings, risks, and recommendations to IT and business stakeholders, including senior management.\n * Stay current with industry best practices, emerging technologies, and regulatory changes in IT audit and cybersecurity.\n * Foster a collaborative, high-performing team environment and promote knowledge sharing.\n * Participate in recruiting, onboarding, and training of new team members.\n * Participate in other projects or assignments as requested.\n\n\n\n## Who we\u2019re looking for\n\nEducation and Experience\n\n * Bachelor\u2019s degree or higher in Information Systems, Computer Science, Accounting, Finance, or a relevant field.\n * Minimum of 5\u20138 years of experience in IT audit, cybersecurity, or technology risk management, including experience managing or leading audit teams.\n * Relevant professional certification (CISA, CISSP, CPA, CIA, etc.) and/or MBA.\n * Prior experience in public accounting, internal audit, or IT risk functions in a multinational company.\n\n\n\nKnowledge, Skills, and Abilities \u2013 Expected\n\n * Demonstrated experience managing, developing, and motivating audit teams.\n * Strong analytical and problem-solving skills, with the ability to interpret technical data and provide actionable insights.\n * Excellent communication and interpersonal skills, with the ability to present complex IT findings clearly to stakeholders.\n * High attention to detail and strong organizational skills.\n * Self-motivated, detail-oriented, and able to lead teams and work independently.\n * Demonstrated intellectual curiosity and commitment to continuous learning.\n * Ability to adhere to the Code of Ethics and Standards of Practice as outlined in the International Professional Practices Framework (IPPF) mandated by the Institute of Internal Auditors.\n * Must be able to speak, read, and write in English. Other languages, such as Chinese, Japanese, and Korean, are a plus.\n * Ability to travel up to 30% internationally.\n\n\n\n## Preferred qualifications\n\nKnowledge, Skills, and Abilities \u2013 Ideal (not mandatory)\n\n * Deep IT audit experience, including cybersecurity, information security, ITGCs, ITACs, and cloud controls.\n * Experience with forensic investigations, fraud detection, and incident response.\n * Knowledge of internal controls, COSO framework, SOX 404, US GAAP, and IIA standards.\n * Experience with SAP, ServiceNow, Workiva, Blackline, and other enterprise systems.\n * Proficiency in data analytics tools and software (e.g., ACL/Galvanize, IDEA, SQL, Python, PowerBI).\n * Experience with automation, continuous monitoring, and advanced analytics in IT audit.\n\n\n\n## Our commitment\n\n \n\nWe believe it is important for every person to feel valued, included, and empowered to achieve their full potential. By bringing unique individuals and viewpoints together, we achieve extraordinary results.\n\nLam Research (\"Lam\" or the \"Company\") is an equal opportunity employer. Lam is committed to and reaffirms support of equal opportunity in employment and non-discrimination in employment policies, practices and procedures on the basis of race, religious creed, color, national origin, ancestry, physical disability, mental disability, medical condition, genetic information, marital status, sex (including pregnancy, childbirth and related medical conditions), gender, gender identity, gender expression, age, sexual orientation, or military and veteran status or any other category protected by applicable federal, state, or local laws. It is the Company\u0027s intention to comply with all applicable laws and regulations. Company policy prohibits unlawful discrimination against applicants or employees.\n\nLam offers a variety of work location models based on the needs of each role. Our hybrid roles combine the benefits of on-site collaboration with colleagues and the flexibility to work remotely and fall into two categories \u2013 On-site Flex and Virtual Flex. \u2018On-site Flex\u2019 you\u2019ll work 3+ days per week on-site at a Lam or customer/supplier location, with the opportunity to work remotely for the balance of the week. \u2018Virtual Flex\u2019 you\u2019ll work 1-2 days per week on-site at a Lam or customer/supplier location, and remotely the rest of the time.\n\nOur Perks and Benefits\n\n \n \nAt Lam, our people make amazing things possible. That\u2019s why we invest in you throughout the phases of your life with a comprehensive set of outstanding benefits. \n