Director, IT Internal Audit

GAQ226R189

Databricks is looking for a Director, IT Internal Audit to lead our global IT audit team. In this role, you will be accountable for designing and driving the IT SOX program, overseeing risk-based IT audit initiatives, and partnering with executives across IT, Engineering, Security, Accounting, Finance, and Business Operations as you build our IT internal control framework.

You will serve as the primary liaison to senior leadership on IT risk, SOX compliance, and IT governance, while building a high-performing team that delivers measurable impact. This role offers visibility at the highest levels of the organization and requires a balance of strategic foresight, technical expertise, and hands-on leadership.

The impact you will have:

• Establish and own relationships with senior Engineering and IT partners as their strategic risk advisor on establishing internal controls and process efficiencies, providing insight and direction on risk management and SOX compliance
• Build and lead a team of risk and control professionals (both internal and external resources) who possess the knowledge and technical capability to drive value-based audits
• Develop, implement, and maintain Databricks’ IT SOX compliance strategy and framework, ensuring alignment with business objectives and regulatory requirements, with a focus on scalability and establishing a common control framework
• Implement an IT risk assessment process and develop and own the annual IT internal audit plan for relevant engineering and IT systems and processes
• Serve as the subject matter expert and key contact for technology risks and controls within the organization, and be an insightful resource for strategizing on implementing controls in an efficient and effective manner, while balancing the pace and velocity of the organization
• Recommend controls to be implemented as part of the new system and process implementations, and collaborate with teams on controls implementation
• Lead and manage IT risk assessments, integrated audits, and/or process reviews, including but not limited to cyber security, privacy, and infrastructure internal audits
• Continuously help improve the company’s ability to mitigate IT risks and develop recommendations on how to integrate controls as part of daily operations
• Collaborate closely with external auditors, providing necessary documentation, evidence, and support for IT SOX audits and other compliance assessments

What we look for:

• Minimum of 15+ years of experience, preferably with a mix of external audit/consulting and in-house internal audit experience within publicly traded companies
• Bachelor’s/Master’s degree in a relevant field such as computer science, management information systems, software engineering, or equivalent experience
• Demonstrated expertise in designing, implementing, and assessing IT General Controls (ITGCs) and application controls in a SOX-compliant environment
• Deep understanding of common IT control frameworks as they pertain to IT SOX compliance in an engineering environment, with a strong emphasis on the COSO framework.
• Deep knowledge of technology environments/controls, including both 3rd party (e.g., AWS, GCP) and home-grown systems, and associated security and compliance considerations relevant to SOX
• Mission-driven, enthusiastic to learn and grow; team-oriented with a positive attitude and able to work in a hyper-growth, fast-paced environment
• Excellent written and verbal communication skills, with the ability to articulate complex technical and compliance concepts to both technical and non-technical audiences
• Strong risk management experience, including performing assessments and audits, driving issue impact discussions, and the ability to think strategically about remediation strategies

Pay Range Transparency

Databricks is committed to fair and equitable compensation practices. The pay range(s) for this role is listed below and represents the expected salary range for non-commissionable roles or on-target earnings for commissionable roles. Actual compensation packages are based on several factors that are unique to each candidate, including but not limited to job-related skills, depth of experience, relevant certifications and training, and specific work location. Based on the factors above, Databricks anticipates utilizing the full width of the range. The total compensation package for this position may also include eligibility for annual performance bonus, equity, and the benefits listed above. For more information regarding which range your location is in visit our page here.

Zone 1 Pay Range

$184,400—$258,200 USD

About Databricks

Databricks is the data and AI company. More than 10,000 organizations worldwide — including Comcast, Condé Nast, Grammarly, and over 50% of the Fortune 500 — rely on the Databricks Data Intelligence Platform to unify and democratize data, analytics and AI. Databricks is headquartered in San Francisco, with offices around the globe and was founded by the original creators of Lakehouse, Apache Spark™, Delta Lake and MLflow. To learn more, follow Databricks on Twitter, LinkedIn and Facebook.

Benefits

At Databricks, we strive to provide comprehensive benefits and perks that meet the needs of all of our employees. For specific details on the benefits offered in your region, please visit https://www.mybenefitsnow.com/databricks.

Our Commitment to Diversity and Inclusion

At Databricks, we are committed to fostering a diverse and inclusive culture where everyone can excel. We take great care to ensure that our hiring practices are inclusive and meet equal employment opportunity standards. Individuals looking for employment at Databricks are considered without regard to age, color, disability, ethnicity, family or marital status, gender identity or expression, language, national origin, physical and mental ability, political affiliation, race, religion, sexual orientation, socio-economic status, veteran status, and other protected characteristics.

Compliance

If access to export-controlled technology or source code is required for performance of job duties, it is within Employer’s discretion whether to apply for a U.S. government license for such positions, and Employer may decline to proceed with an applicant on this basis alone.

Read Full Description