At Snowflake, we are powering the era of the agentic enterprise. To usher in this new era, we seek AI-native thinkers across every function who are energized by the opportunity to reinvent how they work. You don’t just use tools; you possess an innate curiosity, treating AI as a high-trust collaborator that is core to how you solve problems and accelerate your impact. We look for low-ego individuals who thrive in dynamic and fast-moving environments and move with an experimental mindset — who rapidly test emerging capabilities to discover simpler, more powerful ways to deliver results. At Snowflake, your role isn't just to execute a function, but to help redefine the future of how work gets done.
Snowflake is growing and looking for a driven IT Auditor to join our team. You will report to the Manager, IT Internal Audit and help with an evolving workload with minimal supervision in a fast-paced environment. Whether it is facilitating Snowflake’s SOX compliance efforts or conducting internal audits, we strive to enhance the effectiveness, efficiency and scalability of the company’s processes, systems, and underlying internal control environment. You will be expected to problem solve, collaborate, and move fast while keeping attention to detail.
Note this will be an individual contributor role to start.
Responsibilities:
- Execute and support our IT internal controls assessments, other IT audits and investigations.
- Cloud & Infrastructure: Lead audits of cloud infrastructure (AWS, Azure, GCP) focusing on identity and access management (IAM), encryption, and network security configurations rather than just general IT controls
- **Automated Assurance: **Design and implement automated, data-driven audit procedures using SQL, Python, or AI coding tools like Cortex Code (in Snowflake) move toward real-time monitoring of security compliance.
- Product Security Audits: Partner with Engineering and Product teams to audit secure software development lifecycles (SDLC) and CI/CD pipeline security.
- Compliance Audits: Conduct internal compliance review, ensuring adherence to frameworks like ISO 27001, ISO 42001, ISO 22301, or ISO 27017.
- Execute & review Documentation: Execute & Review testing work papers leveraging AI and analytics and be able to interpret risks and insights
- Strategic Advisory: Act as a consultant to product teams, helping design "compliant-by-design" systems for new features and technologies (eg . use of AI tools)
- **Evaluate deficiencies: **Assess and analyze the impact of IT control deficiencies and audit findings; identify remediation procedures and compensating controls to address the associated risks.
- Participate in risk assessments and the design of audit programs in order to address relevant risks.
- Assist in all phases of internal audits including planning, fieldwork, close meetings, and reporting.
- Assist the Managers and Senior Managers to identify areas of improvement as well as recommend industry-wide best practices
Requirements:
- Bachelor’s degree in Computer Science, Information Technology or Systems; or relevant MBA
- 7+ years of relevant work experience in high-growth, cloud-first technology companies.
- Deep experience in building systems to prevent risk rather than just reporting it.
- Recognized professional qualification(s) CA/CPA/CISA/CIA/CISSP/CCSP (Certified Cloud Security Professional) or CCSVP (Certificate of Cloud Security Knowledge)
- An ability to influence senior leadership on emerging security risks and the design of scalable internal controls.
- Proven experience in supporting the execution of an end-to-end IT SOX program and control principles (e.g. COSO). Experience in auditing Salesforce and Workday Financials is strongly preferred.
- Data interpretation and data driven audit/analytics approach with experience in SQL. Java/Python readability preferred.
- An ability to proactively problem-solve, identify, advocate for and execute improvements.
- Being able to maintain a positive attitude and embrace changes, as well as thrive in a fast-paced environment.
- An ability to manage multiple, concurrent projects efficiently and effectively with minimal oversight. Maintain relationships with process owners and other key stakeholders.
- Certifications like AWS, Azure and Google Cloud is a plus but not required
Every Snowflake employee is expected to follow the company’s confidentiality and security standards for handling sensitive data. Snowflake employees must abide by the company’s data security plan as an essential part of their duties. It is every employee's duty to keep customer information secure and confidential.
Snowflake is growing fast, and we’re scaling our team to help enable and accelerate our growth. We are looking for people who share our values, challenge ordinary thinking, and push the pace of innovation while building a future for themselves and Snowflake.
How do you want to make your impact?
For jobs located in the United States, please visit the job posting on the Snowflake Careers Site for salary and benefits information: careers.snowflake.com