Director, Internal Audit

Description

Director, Internal Audit

Location : Remote, USA

Employment Type : Full-Time

Compensation : $130,000.00 - $175,000.00 (Range applies to US candidates only) + Benefits / Variable Comp / Equity - Range may vary based on experience.

Benefits Offered : Vision, Medical, Life, Dental, 401K

ABOUT THE JOB

OneStream is looking for a Director of Internal Audit to join our Risk team. The Director, Internal Audit will continually verify that we remain compliant with all company standards, during our FedRAMP Security Assessments, SOC, ISO and SOX Audits.

In addition, this position has overall oversight of the company's Internal Audit Program, driving continual improvement is all aspects of our complex control frameworks, working closely with our Risk and Compliance teams.

This role will inherit a small but established internal audit team who, in partnership with external resources are responsible for planning, executing and leading audits across the organization to evaluate risks for current processes and procedures as well as documenting discoveries and recommendations.

PRIMARY DUTIES AND RESPONSIBILITIES

• Develop internal audit policies, procedures, and work standards by applying the appropriate audit methodologies.
• Prepare complex analysis, studies and reports to ensure audit findings are properly documented and audit evidence is sufficient.
• Prepare and implement a risk-based audit plan to assess, report on, and make suggestions for improving the company's key operational and finance activities and internal controls.
• Monitor implementation of audit recommendations proposed by Internal Audit, as well as external auditors, to ensure corrective actions have been implemented to mitigate risks.
• Overall management of co-sourced and audit engagements.
• Drive the maturity and continual improvement of the audit program at OneStream.
• Meet regularly with the Audit Committee to report the status of Internal Audit's ongoing monitoring activities and serve as a "thought leader" with respect to Audit and internal control best practices.
• Executive board reporting and facilitation of issue management.
• Proactively inform senior management of significant risks or exposures related to internal controls, compliance, and / or governance requiring prompt attention.
• Update / develop process documentation to support management's SOX assessment.
• Develop technical narratives SOC Reports and other assessments.
• Participate in security incident investigations.
• Serve as the key point person on all regulatory exams and other third-party audits.
• Engage in continuous knowledge development regarding rules, regulations, best practices, tools, techniques, and performance standards.
• Perform other duties as assigned.

QUALITIES OF A SUCCESSFUL CANDIDATE

REQUIRED EDUCATION AND EXPERIENCE

• BA / BS Degree or relevant combination of education and experience.
• 20+ years of experience in a compliance capacity related to at least one of the following areas :
• Internal Audit - All functions
• External Audit Requirements for Financial Reporting
• Service Organization Controls (SOC)
• HIPAA
• FedRAMP
• Experience managing large teams of direct reports as well as peers to facilitate engagements.
• Experience managing board of director communications, direction and alignment.
• Significant experience in auditing operational and financial reporting controls
• Experience with IT Security & Infrastructure, Security Risk Management, SOC 2, FedRAMP, Security Policies and Procedures, Security Testing and Auditing, Internal Audit.
• Strong sense of urgency and solution-oriented mindset.
• Excellent analytical, organizational, and project management skills.
• Proficiency with Microsoft Office (Word, Excel, PowerPoint).

PREFERRED EDUCATION AND EXPERIENCE

• MBA or MS in Technical Operations, Security or Management
• Nice-to-have one or more of the following certifications :
• Certified Information Systems Security Professional (CISSP).
• Certified Public Accountant (CPA)
• Certified Internal Auditor (CIA).
• Information Technology Infrastructure Library (ITIL) Foundation.
• ISO Internal Auditor.

PERSONAL ATTRIBUTES

• Professional
• Ethical
• Credible
• Competitive
• Professional
• Outgoing
• Humble
• Confident
• Detail-oriented
• Able to multi-task
• Legally authorized to work for any company in the country where this position is located without sponsorship.

WHO WE ARE

OneStream is how today's Finance teams can go beyond just reporting on the past and Take Finance Further by steering the business to the future.

It's the only enterprise finance platform that unifies financial and operational data, embeds AI for better decisions and productivity, and empowers the CFO to become a critical driver of business strategy and execution.

Our vision is to be the operating system for modern finance, digitizing core financial functions and empowering the CFO to become a critical driver of business strategy.

To learn more visit www.onestream.com .

WHY JOIN THE ONESTREAM TEAM

• Transparency around corporate structure, salary, and benefits
• Core value of customer success
• Variety of project work (not industry specific)
• Strong culture and camaraderie
• Multiple training opportunities

BENEFITS AT ONESTREAM

OneStream employees are passionate, hardworking individuals who go above and beyond to keep our customers happy and follow through on our mission statement.

They consistently deliver the best and in turn, we make every effort to keep them cared for and happy. A sample of the benefits we provide are :

• Excellent Medical Plan
• Dental & Vision Insurance
• Life Insurance
• Short & Long Term Disability
• Vacation Time
• Paid Holidays
• Professional Development
• Retirement Plan

OneStream is an Equal Opportunity Employer

LI-KB1

LI-Remote

Equal Opportunity Employer / Protected Veterans / Individuals with Disabilities

The contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant.

However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor's legal duty to furnish information. 41 CFR 60-1.35(c)