Sr Audit Manager, Technology Risk and Assurance

The Global Finance Group drives financial strategies based on expert understanding of Lam'sbreakthrough technologies, the semiconductor market, and the global business environment.They manage our company's financials and relationships with our investor community to ensurewe have the strong financial foundation to fuel innovation and growth.

This position reports to the Director, Internal Audit, based in the US. As an IT Audit Manager or Senior Manager, you will lead, manage, and develop a team of IT auditors in the planning and execution of IT, cybersecurity, and technology risk audits using a risk-based methodology. You will evaluate the effectiveness of IT processes, controls, and systems, recommend opportunities for improvement, and drive best practices across the organization. The ideal candidate will have deep expertise in IT audit principles, cybersecurity, and regulatory requirements, as well as experience leveraging data analytics and automation to enhance audit efficiency and insight. You will oversee IT SOX testing, manage audit teams, and communicate complex technical topics to diverse audiences. The IT Audit Manager will proactively seek information, problem solve, and foster a culture of continuous improvement, collaboration, and professional skepticism.

• Lead, manage, and mentor a team of IT auditors, providing coaching, feedback, and professional development opportunities.
• Oversee the planning, scoping, and execution of IT, cybersecurity, and technology risk audits, including risk assessment and audit program development.
• Allocate resources, set priorities, and ensure timely completion of audit projects.
• Perform walkthroughs with IT process owners to identify key processes, controls, and gaps.
• Design and execute audit procedures to assess IT risks, including ITGCs, ITACs, cybersecurity, and data privacy.
• Oversee and review IT SOX controls testing and ensure compliance with SOX 404 requirements.
• Develop and implement data analytics and automation to support IT audits, investigations, and continuous monitoring.
• Evaluate IT system configurations, access controls, change management, and segregation of duties.
• Assess cybersecurity controls, incident response, and vulnerability management.
• Prepare clear, concise, and timely audit documentation and reports consistent with project milestones.
• Communicate findings, risks, and recommendations to IT and business stakeholders, including senior management.
• Stay current with industry best practices, emerging technologies, and regulatory changes in IT audit and cybersecurity.
• Foster a collaborative, high-performing team environment and promote knowledge sharing.
• Participate in recruiting, onboarding, and training of new team members.
• Participate in other projects or assignments as requested.

Education and Experience

• Bachelor's degree or higher in Information Systems, Computer Science, Accounting, Finance, or a relevant field.
• Minimum of 5-8 years of experience in IT audit, cybersecurity, or technology risk management, including experience managing or leading audit teams.
• Relevant professional certification (CISA, CISSP, CPA, CIA, etc.) and/or MBA.
• Prior experience in public accounting, internal audit, or IT risk functions in a multinational company.

Knowledge, Skills, and Abilities - Expected

• Demonstrated experience managing, developing, and motivating audit teams.
• Strong analytical and problem-solving skills, with the ability to interpret technical data and provide actionable insights.
• Excellent communication and interpersonal skills, with the ability to present complex IT findings clearly to stakeholders.
• High attention to detail and strong organizational skills.
• Self-motivated, detail-oriented, and able to lead teams and work independently.
• Demonstrated intellectual curiosity and commitment to continuous learning.
• Ability to adhere to the Code of Ethics and Standards of Practice as outlined in the International Professional Practices Framework (IPPF) mandated by the Institute of Internal Auditors.
• Must be able to speak, read, and write in English. Other languages, such as Chinese, Japanese, and Korean, are a plus.
• Ability to travel up to 30% internationally.

Knowledge, Skills, and Abilities - Ideal (not mandatory)

• Deep IT audit experience, including cybersecurity, information security, ITGCs, ITACs, and cloud controls.
• Experience with forensic investigations, fraud detection, and incident response.
• Knowledge of internal controls, COSO framework, SOX 404, US GAAP, and IIA standards.
• Experience with SAP, ServiceNow, Workiva, Blackline, and other enterprise systems.
• Proficiency in data analytics tools and software (e.g., ACL/Galvanize, IDEA, SQL, Python, PowerBI).
• Experience with automation, continuous monitoring, and advanced analytics in IT audit.

We believe it is important for every person to feel valued, included, and empowered to achieve their full potential. By bringing unique individuals and viewpoints together, we achieve extraordinary results.

Lam Research ("Lam" or the "Company") is an equal opportunity employer. Lam is committed to and reaffirms support of equal opportunity in employment and non-discrimination in employment policies, practices and procedures on the basis of race, religious creed, color, national origin, ancestry, physical disability, mental disability, medical condition, genetic information, marital status, sex (including pregnancy, childbirth and related medical conditions), gender, gender identity, gender expression, age, sexual orientation, or military and veteran status or any other category protected by applicable federal, state, or local laws. It is the Company's intention to comply with all applicable laws and regulations. Company policy prohibits unlawful discrimination against applicants or employees.

Lam offers a variety of work location models based on the needs of each role. Our hybrid roles combine the benefits of on-site collaboration with colleagues and the flexibility to work remotely and fall into two categories - On-site Flex and Virtual Flex. 'On-site Flex' you'll work 3+ days per week on-site at a Lam or customer/supplier location, with the opportunity to work remotely for the balance of the week. 'Virtual Flex' you'll work 1-2 days per week on-site at a Lam or customer/supplier location, and remotely the rest of the time.