Senior Technology Auditor II

As a Senior Technology Auditor II at Braze, your key responsibilities will include leading IT SOX compliance efforts, conducting operational audits focused on technology and cloud services, and evaluating IT-related risks. You’ll collaborate with IT stakeholders and external auditors, ensuring adherence to regulatory requirements while engaging in comprehensive audit processes.

To qualify for the Senior Technology Auditor II position at Braze, candidates should have a B.S. in Information Technology or a related field, at least 5 years of experience in IT audit or information security, and relevant certifications like CPA or CISA. Additionally, strong knowledge of IT compliance frameworks and data analysis skills are essential.

The Internal Audit team at Braze plays a vital role by providing objective assurance on risk management and compliance while enhancing internal controls. This function supports critical decision-making and helps the organization adapt to new regulatory challenges, contributing significantly to the overall success and sustainability of Braze.

A Senior Technology Auditor II at Braze would utilize various tools for data analytics and automation, including SQL and Python. Experience with Workiva GRC platform may also be beneficial, alongside working with advanced data extraction and transformation tools to extract actionable insights from complex datasets.

The work culture at Braze for a Senior Technology Auditor II is friendly, collaborative, and focused on innovation and teamwork. Employees are encouraged to set high standards for themselves and are empowered to contribute actively to the company's goals, maintaining an environment that fosters personal and professional development.

When answering this question, focus on Braze’s innovative culture, commitment to quality, and opportunities for professional growth. Highlight your passion for technology auditing and how you can contribute to the company's success.

Discuss your familiarity with various IT compliance frameworks like COBIT, NIST, or ISO 27001. Provide examples of how you applied these frameworks in previous roles to ensure compliance and manage risks effectively.

Explain your methodical approach to assessing cloud services, including reviewing security measures, compliance with standards, and evaluating data privacy. Use specific examples from your past experience to demonstrate your audit methods.

Talk about the importance of clear communication and collaboration. Share methods you employ for building rapport with IT teams and stakeholders to ensure a smooth auditing process.

Describe a specific instance where you used data analytics to provide insights during an audit. Discuss the tools used, the data analyzed, and the actions taken based on your findings.

Discuss your commitment to continuous learning through professional development opportunities, online courses, and staying connected with industry organizations and publications related to IT compliance.

Share your experiences in leading audit meetings, including how you prepare agendas, facilitate discussions, and follow up on action items to ensure audits run smoothly and effectively.

Identify a particular challenge you encountered, explain your thought process in addressing it, and detail the steps you took to resolve the issue while maintaining integrity in the audit process.

Discuss your approach to evaluating IT risks by categorizing them based on impact and likelihood, and explain how you determine which risks to address first to align with the organization's risk management strategy.

Highlight essential skills such as analytical thinking, attention to detail, effective communication, and technical expertise in IT auditing and compliance. Illustrate these skills with examples from your career.