What you'd actually do

Own the end‑to‑end execution of assigned technology and cybersecurity audit engagements, from detailed planning through fieldwork, reporting, and issue follow‑up

Lead risk‑based audit scoping and develop audit workplans and testing strategies aligned to key risks, system architecture, and business context

Assess the design and operating effectiveness of controls across complex technology domains, including:

Apply professional skepticism and technical judgment to move beyond standard audit procedures, identifying root causes, control gaps, and emerging or non‑obvious risks

Conduct deep‑dive interviews and walkthroughs with engineering, security, and platform teams to understand how systems operate in practice and where risk trade‑offs exist

Skills

Required

Strong understanding of technology and cybersecurity risk domains, including cloud‑based architectures and modern application environments
Ability to independently execute complex audits within a defined scope while exercising sound professional judgment
Demonstrated analytical skills with the ability to connect technical control gaps to broader business, customer, and operational impact
Intellectual curiosity and willingness to challenge assumptions, ask difficult questions, and explore areas of uncertainty
Ability to translate complex technical concepts into clear, actionable insights for varied audiences
Strong written and verbal communication skills, particularly in drafting concise, high‑quality audit reports
Ability to build trusted relationships with stakeholders while maintaining independence and objectivity
Strong organizational skills with the ability to manage priorities, deadlines, and competing demands
High level of integrity, professionalism, and accountability
8+ years of experience in IT audit, technology risk, cybersecurity, or related disciplines within a public accounting firm, public company, or technology‑focused organization
Experience leading or owning technology audit engagements, including cybersecurity, cloud, infrastructure, or system implementations

Nice to have

Professional certifications preferred: CISA, CISSP
Other relevant certifications considered: CIA, CPA, CISM, CCSP, CRISC
Experience in a global technology, SaaS, or cloud‑native environment
Exposure to DevOps or DevSecOps practices and secure product development
Familiarity with data analytics, automation, or AI‑enabled audit techniques

At F5, we strive to bring a better digital world to life. Our teams empower organizations across the globe to create, secure, and run applications that enhance how we experience our evolving digital world. We are passionate about cybersecurity, from protecting consumers from fraud to enabling companies to focus on innovation.

Everything we do centers around people. That means we obsess over how to make the lives of our customers, and their customers, better. And it means we prioritize a diverse F5 community where each individual can thrive.

We are seeking an Internal Audit Manager (Technology) to lead risk‑based internal audit engagements focused on technology and cybersecurity. This role is ideal for an experienced technology auditor who is inherently curious, comfortable operating independently, and motivated to dig deeply into complex environments to understand how risk truly manifests.

In this role, you will own audits from planning through reporting, applying sound judgment to assess risk, challenge assumptions, and deliver clear, actionable insights. You will work closely with technology, security, and engineering stakeholders, and play a key role in advancing a modern, technology‑enabled Internal Audit function that serves as a trusted risk partner to the business.

Primary Responsibilities:

Own the end‑to‑end execution of assigned technology and cybersecurity audit engagements, from detailed planning through fieldwork, reporting, and issue follow‑up
Lead risk‑based audit scoping and develop audit workplans and testing strategies aligned to key risks, system architecture, and business context
Assess the design and operating effectiveness of controls across complex technology domains, including:
- Cloud infrastructure and platforms
- Cybersecurity programs and controls
- Identity and access management
- Network and application security
- Logging, monitoring, and incident response
- Secure software development lifecycle (SDLC)
Apply professional skepticism and technical judgment to move beyond standard audit procedures, identifying root causes, control gaps, and emerging or non‑obvious risks
Conduct deep‑dive interviews and walkthroughs with engineering, security, and platform teams to understand how systems operate in practice and where risk trade‑offs exist
Clearly articulate audit observations, including risk implications and practical, prioritized recommendations that support both security and business objectives
Prepare high‑quality audit reports that synthesize detailed findings into clear, relevant insights for technical and non‑technical audiences
Partner with Technology and Cybersecurity leadership during audit execution to validate understanding, discuss risk exposure, and support effective remediation planning
Provide guidance, coaching, and review support to junior auditors, ensuring work quality, accuracy, and adherence to Internal Audit standards
Stay current on emerging technology trends, cybersecurity threats, and evolving risk landscapes to continuously enhance audit coverage
Contribute to the evolution and continuous improvement of Internal Audit methodologies, tools, and ways of working

Knowledge, Skills, and Abilities:

Strong understanding of technology and cybersecurity risk domains, including cloud‑based architectures and modern application environments
Ability to independently execute complex audits within a defined scope while exercising sound professional judgment
Demonstrated analytical skills with the ability to connect technical control gaps to broader business, customer, and operational impact
Intellectual curiosity and willingness to challenge assumptions, ask difficult questions, and explore areas of uncertainty
Ability to translate complex technical concepts into clear, actionable insights for varied audiences
Strong written and verbal communication skills, particularly in drafting concise, high‑quality audit reports
Ability to build trusted relationships with stakeholders while maintaining independence and objectivity
Strong organizational skills with the ability to manage priorities, deadlines, and competing demands
High level of integrity, professionalism, and accountability

Qualifications:

Bachelor’s degree in Information Systems, Computer Science, Cybersecurity, Engineering, Business, Accounting, or a related field
8+ years of experience in IT audit, technology risk, cybersecurity, or related disciplines within a public accounting firm, public company, or technology‑focused organization (6+ with relevant Master’s degree)
Experience leading or owning technology audit engagements, including cybersecurity, cloud, infrastructure, or system implementations
Professional certifications preferred: CISA, CISSP
Other relevant certifications considered: CIA, CPA, CISM, CCSP, CRISC

Preferred Qualifications:

Experience in a global technology, SaaS, or cloud‑native environment
Exposure to DevOps or DevSecOps practices and secure product development
Familiarity with data analytics, automation, or AI‑enabled audit techniques

Travel Requirements:

This role requires the ability to travel up to 25% of the time, including international travel

#LI-AC9

The Job Description is intended to be a general representation of the responsibilities and requirements of the job. However, the description may not be all-inclusive, and responsibilities and requirements are subject to change.

The annual base pay for this position is: $105,600.00 - $158,400.00

F5 maintains broad salary ranges for its roles in order to account for variations in knowledge, skills, experience, geographic locations, and market conditions, as well as to reflect F5’s differing products, industries, and lines of business. The pay range referenced is as of the time of the job posting and is subject to change.

_You may also be offered incentive compensation, bonus, restricted stock units, and benefits. More details about F5’s benefits can be found at the following link: _https://www.f5.com/company/careers/benefits_. F5 reserves the right to change or terminate any benefit plan without notice. _

Please note that F5 only contacts candidates through F5 email address (ending with @f5.com) or auto email notification from Workday (ending with f5.com or** @myworkday.com)****.**

Equal Employment Opportunity

It is the policy of F5 to provide equal employment opportunities to all employees and employment applicants without regard to unlawful considerations of race, religion, color, national origin, sex, sexual orientation, gender identity or expression, age, sensory, physical, or mental disability, marital status, veteran or military status, genetic information, or any other classification protected by applicable local, state, or federal laws. This policy applies to all aspects of employment, including, but not limited to, hiring, job assignment, compensation, promotion, benefits, training, discipline, and termination. F5 offers a variety of reasonable accommodations for candidates. Requesting an accommodation is completely voluntary. F5 will assess the need for accommodations in the application process separately from those that may be needed to perform the job. Request by contacting accommodations@f5.com.