At Broadridge, we've built a culture where the highest goal is to empower others to accomplish more. If you’re passionate about developing your career, while helping others along the way, come join the Broadridge team.
The Senior Auditor, IT/Technology is a role within Internal Audit, responsible for leading the formulation and implementation of the global technology audit plan across a complex fintech environment. Reporting to the Head of IT Audit, this role leads risk-based assurance over critical technology domains including cybersecurity, cloud, infrastructure, application development, IT general controls, and emerging technologies. The position partners closely with senior management to provide clear, actionable insight on technology risk, control effectiveness, and remediation progress.
Key Responsibilities
Develop and execute a risk-based technology audit plan aligned to enterprise priorities, regulatory expectations, and emerging technology risks.
Lead technology risk assessments to identify and prioritize coverage across ITGC, SOX readiness, cybersecurity, cloud platforms, infrastructure, IAM, application controls, and third-party risk.
Direct end-to-end audits covering AWS/cloud environments, product engineering and SDLC, vulnerability management, incident response, disaster recovery/business continuity, data governance, and infrastructure controls.
Provide assurance over key cybersecurity and resilience domains using recognized frameworks such as NIST CSF, COBIT, ISO 27001, SOC 1/SOC 2, HIPAA, and PCI DSS, as applicable.
Oversee reviews of emerging and business-critical technologies, including blockchain, AI/GPT/agentic solutions, digital wallets, and digital currency-related processes and controls.
Evaluate design and operating effectiveness of IT general controls and support SOX/ITGC readiness and related assurance activities where relevant.
Produce clear, concise, audit committee-ready reporting that highlights risk themes, root causes, control gaps, and practical remediation actions.
Build strong relationships with technology, security, product, engineering, compliance, and business stakeholders while maintaining audit independence and objectivity.
Brief senior management, the Head of IT Audit, and the Chief Audit Executive on audit results, thematic insights, and changes in the technology risk landscape.
Lead, coach, and develop a team of IT audit professionals across the US and India; set expectations, review quality, and support career growth and performance.
Drive consistency, quality assurance, and adherence to Internal Audit standards, including Global IIA-aligned methodology, documentation, and reporting practices.
Monitor and validate management action plans, perform issue follow-up and closure testing, and escalate overdue or insufficient remediation where needed.
Advance the use of GRC tools, analytics, and data-driven auditing techniques to improve audit efficiency, coverage, and insight generation.
Required Qualifications
10+ years of experience in IT audit, technology risk, cybersecurity, or broader risk management, including significant leadership responsibility.
Proven experience leading technology audits in complex, regulated, and fast-paced environments, ideally within financial services, fintech, or similarly technology-intensive sectors.
Strong knowledge of ITGC, SOX readiness, cloud risk, cybersecurity controls, IAM, infrastructure, application/SDLC controls, third-party risk, and resilience disciplines.
Hands-on familiarity with audit coverage across vulnerability management, incident response, DR/BCP, data governance, and technology control environments.
Working knowledge of major control frameworks and standards, including NIST CSF, COBIT, ISO 27001, SOC 1/SOC 2, HIPAA, and PCI DSS.
Demonstrated ability to build and execute risk assessments and audit plans, manage multiple concurrent audits, and deliver high-quality reporting to senior stakeholders.
Experience writing audit reports and presenting complex technology risk topics to senior management and executive audit leadership.
Track record of leading distributed teams effectively across cultures, time zones, and regions.
Experience with GRC platforms and data-enabled auditing approaches; comfort working with tools such as Jira, Confluence, Archer GRC, and AutoAudit (Optial/Optra-style audit workflow tools).
Bachelor’s degree or equivalent professional experience in information systems, computer science, accounting, cybersecurity, or a related field.
CISA certification required or strongly preferred.
Additional certifications such as CISSP, CCSP, CRISC, or CIA.
Experience in a global fintech, payments, banking, capital markets, or digital assets environment.
Exposure to audits involving blockchain platforms, AI/GPT/agentic technologies, digital wallets, or digital currency ecosystems.
Experience using analytics to enhance audit scoping, testing, continuous monitoring, or issue validation.
Familiarity with regulatory and compliance expectations relevant to highly regulated technology and data environments.
Experience contributing to audit methodology improvements, quality assurance programs, or function transformation initiatives.
#LI-CB1
#LI-Hybrid
We are dedicated to fostering a collaborative, engaging, and inclusive environment and are committed to providing a workplace that empowers associates to be authentic and bring their best to work. We believe that associates do their best when they feel safe, understood, and valued, and we work diligently and collaboratively to ensure Broadridge is a company—and ultimately a community—that recognizes and celebrates everyone’s unique perspective.
Use of AI in Hiring
As part of the recruiting process, Broadridge may use technology, including artificial intelligence (AI)-based tools, to help review and evaluate applications. These tools are used only to support our recruiters and hiring managers, and all employment decisions include human review to ensure fairness, accuracy, and compliance with applicable laws. Please note that honesty and transparency are critical to our hiring process. Any attempt to falsify, misrepresent, or disguise information in an application, resume, assessment, or interview will result in disqualification from consideration.