Technology Audit Manager

Roku

Be an Early ApplicantFull Time

San Jose, CaliforniaPosted Today

Resume Keywords to Include

Make sure these keywords appear in your resume to improve ATS scoring

GoAWSGCPGitHubGitLabCI/CDDevOps

Job Description

<div class="content-intro"><h2 style="font-family: GothamBold,Helvetica,Arial,sans-serif; color: #662d91;">Teamwork makes the stream work.</h2>   <h3 style="font-family: GothamBold,Helvetica,Arial,sans-serif;">Roku is changing how the world watches TV</h3> Roku is the #1 TV streaming platform in the U.S., Canada, and Mexico, and we've set our sights on powering every television in the world. Roku pioneered streaming to the TV. Our mission is to be the TV streaming platform that connects the entire TV ecosystem. We connect consumers to the content they love, enable content publishers to build and monetize large audiences, and provide advertisers unique capabilities to engage consumers. From your first day at Roku, you'll make a valuable - and valued - contribution. We're a fast-growing public company where no one is a bystander. We offer you the opportunity to delight millions of TV streamers around the world while gaining meaningful experience across a variety of disciplines.  </div><h3>About the role </h3> Roku is seeking a Technology Audit Manager to join its Finance & IT Compliance team. This role will lead and evolve Roku’s technology SOX compliance program, partnering closely with Engineering, Security, Product, and Finance teams to ensure scalable, high-quality controls across a rapidly growing and complex engineering environment.  You will operate at the intersection of audit, technology, and automation, overseeing internal controls across enterprise systems, cloud infrastructure, data platforms, and cybersecurity. You will also drive controls-by-design for system implementations and business process transformations A key priority for this role is modernizing the IT SOX program through AI-powered automation and continuous auditing to improve precision, coverage, and efficiency.  This is a high-impact, hands-on role for a proactive and driven professional who excels in fast-paced environments, collaborates effectively across teams, and brings the vision and execution focus to scale and modernize the compliance function alongside company growth. The ideal candidate brings strong experience in IT SOX and technology audits, along with a builder mindset, the ability to navigate ambiguity, and a track record of influencing cross-functional stakeholders. You should be equally comfortable diving into control details, partnering with engineering teams on system design, and driving strategic initiatives that enhance the overall control environment.  For California Only - The estimated annual salary for this position is between $187,000 and 192,000 annually. Compensation packages are based on factors unique to each candidate, including but not limited to skill set, certifications, and specific geographical location. This role is eligible for health insurance, equity awards, life insurance, disability benefits, parental leave, wellness benefits, and paid time off.    <h3>What you’ll be doing </h3> <ul> <li>Lead and oversee the company’s technology SOX compliance program, evaluating the design and operating effectiveness of IT general controls, automated controls, and key reports supporting financial reporting </li> <li>Maintain a deep understanding of the organization’s end-to-end technology ecosystem and its impact on financial reporting, staying current on system changes, policies, regulatory guidance, and industry best practices </li> <li>Own audit oversight for system implementations, technology transformations, and process automation initiatives, partnering cross-functionally to ensure controls-by-design, strong SDLC governance, and scalable SOX-readiness from pre-go-live through post-implementation </li> <li>Lead cloud infrastructure audits across AWS and GCP environments, assessing controls over access management, network security, encryption, logging and monitoring, configuration management, and data residency; evaluate cloud-native security tools and drive control maturity </li> <li>Drive AI-powered automation of internal controls testing by integrating with IAM platforms (e.g., Okta, AWS IAM) and GitLab to continuously monitor access risks, code changes, and CI/CD controls; leverage AI/ML and automation to detect anomalies and generate audit-ready evidence that enables continuous auditing and improves precision, coverage, and efficiency </li> <li>Establish and maintain an AI controls automation governance framework, including model validation standards, quality thresholds, and human-in-the-loop checkpoints to ensure accuracy, auditability, and regulatory defensibility </li> <li>Assess control deficiencies, perform root cause analysis, and drive remediation efforts to closure, including validation and re-testing of corrective actions </li> <li>Coordinate with co-sourcing partners, external auditors, and control owners to ensure cohesive execution; act as a trusted advisor by anticipating stakeholder needs and delivering actionable insights </li> <li>Prepare and review audit workpapers, reports, ensuring compliance with professional standards and delivering clear, data-driven insights </li> </ul>   <h3>We’re excited if you have </h3> <ul> <li>6–8+ years of relevant technology audit and IT SOX compliance experience, ideally combining Big 4 public accounting and in-house internal audit/SOX roles at a fast-paced public technology company </li> <li>Bachelor’s degree in computer science, Information Systems, Finance, Accounting, or related field </li> <li>Professional certifications such as CISA, CISSP, or CISM preferred; additional certifications (CPA, CIA, CFE) are a plus </li> <li>Strong experience across technology audit domains, including IT general controls (ITGCs), automated controls (ITACs), cloud infrastructure, data engineering, DevOps processes, cybersecurity, system implementations, and business process automation </li> <li>Hands-on experience designing and evaluating IT general and security controls in cloud environments (AWS, GCP); cloud certifications are highly desirable  </li> <li>Experience auditing or supporting enterprise platforms (e.g., NetSuite, Salesforce, Workday) and modern engineering environments (e.g., GitHub, CI/CD pipelines) </li> <li>Solid understanding of SOX and broader compliance frameworks (SOC 1/2, GDPR, PCI-DSS) and security/governance standards (ISO 27001, COBIT, NIST) </li> <li>Experience operating in high-growth, fast-paced environments, with the ability to scale processes and controls alongside business expansion </li> <li>Strong leadership, communication, and project management skills, with the ability to collaborate effectively across technical and business teams </li> <li>Self-driven and proactive, with the ability to manage multiple priorities and deliver high-quality results with minimal supervision </li> </ul>   <h3>Extra Credit </h3> <ul> <li>Master's degree in finance, accounting, computer science, IT, or related field  </li> <li>Strong understanding of finance and business processes, including quote-to-cash, revenue recognition, procure-to-pay, HR operations, and payroll </li> <li>Hands-on experience with automation, AI, and analytics tools to drive audit efficiency and insights. Familiarity with GRC tools like Auditboard is a plus </li> <li>Experience with identity and access management (IAM) and governance tools (e.g., Okta, SailPoint, CyberArk), including user access reviews (UAR), role design, and segregation of duties (SoD) analysis </li> <li>Proven ability to quickly learn and adapt to evolving emerging technologies, including AI, cloud, payments, data platforms, and modern engineering environments, within the media & entertainment industry </li> </ul> <h6>#LI-RR1 </h6><div class="content-conclusion">  <h3 style="font-family: GothamBold,Helvetica,Arial,sans-serif;">Our Hybrid Work Approach</h3> Roku fosters an inclusive and collaborative environment where teams work in the office Monday through Thursday. Fridays are flexible for remote work except for employees whose roles are required to be in the office five days a week or employees who are in offices with a five day in office policy.   <h3 style="font-family: GothamBold,Helvetica,Arial,sans-serif;">Benefits</h3> Roku is committed to offering a diverse range of benefits as part of our compensation package to support our employees and their families. Our comprehensive benefits include global access to mental health and financial wellness support and resources. Local benefits include statutory and voluntary benefits which may include healthcare (medical, dental, and vision), life, accident, disability, commuter, and retirement options (401(k)/pension). Employees are supported in taking time off, in accordance with local leave policies and other personal needs to support their evolving work and life needs. It's important to note that not every benefit is available in all locations or for every role. For details specific to your location, please consult with your recruiter.   <h3 style="font-family: GothamBold,Helvetica,Arial,sans-serif;">Accommodations</h3> Roku welcomes applicants of all backgrounds and provides reasonable accommodations and adjustments in accordance with applicable law. If you require reasonable accommodation at any point in the hiring process, please direct your inquiries to <a href="mailto:employeerelations@roku.com?subject=Job%20Application%20Accommodations">EmployeeRelations@Roku.com</a>.   <h3 style="font-family: GothamBold,Helvetica,Arial,sans-serif;">The Roku Culture</h3> Roku is a great place for people who want to work in a fast-paced environment where everyone is focused on the company's success rather than their own. We try to surround ourselves with people who are great at their jobs, who are easy to work with, and who keep their egos in check. We appreciate a sense of humor. We believe a fewer number of very talented folks can do more for less cost than a larger number of less talented teams. We're independent thinkers with big ideas who act boldly, move fast and accomplish extraordinary things through collaboration and trust. In short, at Roku you'll be part of a company that's changing how the world watches TV.  We have a unique culture that we are proud of. We think of ourselves primarily as problem-solvers, which itself is a two-part idea. We come up with the solution, but the solution isn't real until it is built and delivered to the customer. That penchant for action gives us a pragmatic approach to innovation, one that has served us well since 2002.  To learn more about Roku, our global footprint, and how we've grown, visit <a href="https://www.weareroku.com/factsheet">https://www.weareroku.com/factsheet</a>. By providing your information, you acknowledge that you want Roku to contact you about job roles, that you have read Roku's <a href="https://www.weareroku.com/roku-job-applicant-privacy-notice-for-job-applicants">Applicant Privacy Notice</a>, and understand that Roku will use your information as described in that notice. If you do not wish to receive any communications from Roku regarding this role or similar roles in the future, you may unsubscribe at any time by emailing <a href="mailto:workforceprivacy@roku.com?subject=Unsubscribe%20Request%20" target="_blank">WorkforcePrivacy@Roku.com</a>.</div>