Privacy Auditor, Internal Audit, Privacy

Minimum qualifications:

• Bachelor's degree in a quantitative discipline or equivalent practical experience.
• 4 years of experience in business intelligence, analytics, or quantitative analysis related fields.
• Experience in Programming and SQL.

Preferred qualifications:

• CIPP, CISSP, CISA, or other related privacy or audit certifications.
• PMP certification or experience with project management.
• Experience performing risk assessments, designing or implementing internal controls, and auditing platforms, hardware, content moderation, online advertising, cloud technologies, content licensing, e-commerce, privacy, security, and AI.
• Experience coding in Python, Java, C++ or comparable language, evaluating for risk and design.
• Experience in relational database analysis (e.g., SQL), with knowledge of structures and principles of object-oriented programming.
• Knowledge of internet technologies (e.g., cookies, APIs, data storage, encryption, access management), and of privacy concepts (e.g., consent, collection, data minimization, data deletion, use limitation).

About the job:

Internal Audit‘s mission is to focus on reducing risk across Alphabet by monitoring the risk environment across Alphabet and providing insights to enable risk management. The team works with teams and leadership to achieve a control environment that enhances and protects organizational value.

In this role, you’ll advise the business and engineering groups to identify areas of risk and make valuable recommendations on controls. You’ll have the opportunity to influence change and decisions for business initiatives including product launches and system implementations. You will be responsible for designing and executing audit programs and procedures for key privacy controls that mitigate risks to Alphabet and its users.

The US base salary range for this full-time position is $122,000-$174,000 + bonus + equity + benefits. Our salary ranges are determined by role, level, and location. Within the range, individual pay is determined by work location and additional factors, including job-related skills, experience, and relevant education or training. Your recruiter can share more about the specific salary range for your preferred location during the hiring process.

Responsibilities:

• Work with Privacy and data governance teams to understand the privacy risk profile and use this knowledge for audit planning and execution.
• Design and execute audit programs and procedures to scalably test and provide analysis on the design and operating effectiveness of key privacy controls that mitigate risks.
• Analyze audit results, draw conclusions, and provide risk-based and data-driven recommendations for improvement.
• Prepare detailed audit reports summarizing scope, procedures, findings, and recommendations.
• Manage relationships with stakeholders relevant to areas of domain expertise (e.g., Privacy, Engineering, Legal) and leverage to gain risk insights to influence the Audit Risk Universe and engagement and service offering prioritization.