Job details

Cybersecurity Auditor, Finance - job 1 of 2

Minimum qualifications:• Bachelor's Degree in Accounting, Business, Finance or equivalent practical experience.• 4 years work experience in an internal audit role, with a focus on cybersecurity.• Experience with internal controls and business processes.Preferred qualifications:• Certification in CISSP, CCSP, PMP, CRISC, CISA, or other related security certifications.• Experience applying project management skills in an audit, consulting, or security environment or PMP-certified.• Experience testing controls to determine compliance with NIST, FedRAMP, ISO 27000 series, PCI-DSS, SOC 2, CCM or other security frameworks.• Experience in root cause analysis, security risk assessments, and technical cross-functional projects within non-standard, technical infrastructure.• Proficiency in relational database analysis (e.g., SQL).• Familiarity with basic structures and principles of object-oriented programming.About the jobInternal Audit's mission is to protect and enable growth across Alphabet, Google and our Bets with objective, practical insights. We do this by monitoring the risk environment across Alphabet and providing insights to enable effective risk management. We work closely with teams and leadership to achieve a strong control environment that enhances and protects organizational value. We serve as one of the company's various lines of defense for staffing and developing our team to be control experts who deliver objective and reliable results. As a member of the team, you'll advise the business and engineering groups to identify areas of risk and make valuable recommendations on controls. You'll have the opportunity to influence change and decisions for business initiatives including product launches and system implementations. You enjoy working in a dynamic environment, are passionate about technology and are able to focus on key issues and the details that come with it.The name Google came from "googol," a mathematical term for the number 1 followed by 100 zeros. And nobody at Google loves big numbers like the Finance team when providing in depth analysis on all manner of strategic decisions across Google products. From developing forward-thinking analysis to generating management reports to scaling our automated financial processes, the Finance organization is an important partner and advisor to the business.The US base salary range for this full-time position is $118,000-$174,000 bonus equity benefits. Our salary ranges are determined by role, level, and location. The range displayed on each job posting reflects the minimum and maximum target salaries for the position across all US locations. Within the range, individual pay is determined by work location and additional factors, including job-related skills, experience, and relevant education or training. Your recruiter can share more about the specific salary range for your preferred location during the hiring process.Please note that the compensation details listed in US role postings reflect the base salary only, and do not include bonus, equity, or benefits. Learn more about benefits at Google .Responsibilities• Work closely and build relationships with Security and Safety teams to identify the information security risk profile of a function, service, or product area and use this knowledge for audit planning and execution.• Design and execute audit programs and procedures to scalably test and provide in-depth analysis on the design and operating effectiveness of key security controls that mitigate risks to Alphabet/Google and its users.• Deliver audit reports to executive leadership with data-driven assurance and findings/observations and conduct follow ups with management to drive timely remediation of control gaps or deficiencies.• Collaborate with management and users to interpret the significance of findings, conclude on those findings, and make practical recommendations.

Google Glassdoor Company Review

4.4

Google DE&I Review

No rating

CEO of Google

Sundar Pichai

Approve of CEO

Average salary estimate

Estimate provided by employer

$76500 / ANNUAL (est.)

min

max

$66K

$87K

If an employer mentions a salary or salary range on their job, we display it as an "Employer Estimate". If a job has no salary data, Rise displays an estimate if available.

What You Should Know About Cybersecurity Auditor, Finance, Google

Join Google as a Cybersecurity Auditor in Des Moines, IA, where your expertise will play a crucial role in safeguarding our finance operations. At Google, we understand that cybersecurity is not just a necessity; it’s a foundational element of our business strategy. With a Bachelor's degree in Accounting, Business, Finance, or a related field, coupled with four years of experience in internal audit focusing on cybersecurity, you'll thrive in identifying risks and devising effective solutions. Your role will involve working closely with Security and Safety teams to establish the information security risk profile for various functions, services, and products. You'll get to design and execute audit programs aimed at assessing the effectiveness of key security controls, delivering insightful audit reports to executive leadership, and driving the remediation of control gaps. We're looking for someone with a knack for details and a passion for technology, leveraging skills in areas such as project management, risk assessments, and potentially security certifications like CISSP or CISA. If you’re ready to influence business initiatives and contribute to a culture of security excellence, this is your chance to make an impact with Google.

Frequently Asked Questions (FAQs) for Cybersecurity Auditor, Finance Role at Google

What are the main responsibilities of a Cybersecurity Auditor at Google?

As a Cybersecurity Auditor at Google, your primary responsibilities include assessing the information security risk profile of various functions, designing and executing audit programs, and delivering data-driven audit reports to executive leadership. You'll work closely with security teams to evaluate the effectiveness of key security controls, identify areas of risk, and provide practical recommendations to enhance organizational value.