Senior Technology Auditor

Описание вакансии


Join us in bringing joy to customer experience.  Five9 is a leading provider of cloud contact center software, bringing the power of cloud innovation to customers worldwide.

Living our values everyday results in our team-first culture and enables us to innovate, grow, and thrive while enjoying the journey together. We celebrate diversity and foster an inclusive environment, empowering our employees to be their authentic selves.

Five9 is a leading provider of cloud software for the enterprise contact center market, bringing the power of the cloud to thousands of customers and facilitating more than three billion customer interactions annually. Since 2001, Five9 has led the cloud revolution in contact centers, helping organizations transition from legacy premise-based solutions to the cloud. Five9 provides businesses with cloud contact center software that is reliable, secure, compliant and scalable, which is designed to create exceptional customer experiences, increase agent productivity and deliver tangible business results. Five9 is looking for a driven and highly skilled Senior Technology Auditor to join our Compliance team. The Senior Technology Auditor is responsible for leading and executing audits focused on cloud environments, cybersecurity, and technical controls. This role assesses compliance with frameworks such as NIST, ISO 27000 series, and data privacy regulations, and identify risks and recommends improvements.

The ideal candidate is self-driven, detail-oriented, and experienced in evaluating complex cloud-based systems and security programs.

Key Responsibilities

• Lead and execute internal audits to evaluate the effectiveness of security controls, technical configurations, and security practices across Five9’s systems, infrastructure, and applications.
• Perform comprehensive risk assessments to identify potential threats and vulnerabilities across cloud environments, infrastructure, and systems, and recommend risk mitigation strategies.
• Review and assess internal security policies and procedures to ensure they are current, comprehensive, and aligned with regulatory requirements, internal governance standards, and applicable contractual obligations.
• Evaluate the organization’s compliance with regulatory and industry frameworks, including NIST, ISO 27000 series, GDPR, HIPAA, PCI DSS, and SOC 2, and identify gaps and recommending corrective actions.
• Plan and execute audits end-to-end, including defining objectives and scope, developing audit programs, conducting interviews, collecting technical evidence, and documenting findings.
• Prepare and deliver comprehensive audit reports that communicate findings, control weaknesses, and actionable recommendations for remediation to stakeholders and senior management.
• Collaborate with cross-functional teams across the business to support remediation of audit findings and drive continuous improvement initiatives related to security and compliance.
• Provide subject matter expertise and guidance on security risks, controls, and compliance requirements to internal teams.
• Maintain a strong understanding of evolving security threats, regulatory changes, and best practices to maintain a forward-looking audit program that supports a secure and compliant environment.
• Contribute to the development of audit programs, processes, working templates, and best practices in a growing internal audit team.

Qualifications

• Bachelor’s or higher degree in Information Systems, Computer Science, Cybersecurity, or any related field.
• 3-5 years of experience in technology auditing, IT risk and compliance, or information security, with strong exposure to cloud environments and technical controls.
• Deep understanding of cloud computing models (e.g., SaaS) and the related control requirements.
• Proven experience auditing or implementing controls aligned with NIST, ISO 27001, SOC 2, PCI DSS, GDPR, HIPAA, or similar standards.
• Demonstrated ability to plan, lead, and execute complex audits with minimal supervision. • Familiarity with IT infrastructure, security tools, access controls, and data protection technologies.
• Excellent written and verbal communication skills, with the ability to present technical findings to both technical and non-technical audiences.
• Requires strong organizational skills and the ability to manage multiple projects effectively in a fully remote work environment.
• Preferred professional certifications such as CISA (Certified Information Systems Auditor), CISSP (Certified Information Systems Security Professional), or an equivalent certification.
• Seeking a proactive, self-directed professional with a proven ability to shape and elevate a high-performing internal audit function

Company Benefits

• Company stocks
• Annual merit increase based on performance
• 15% night shift differential pay
• Paid Leave with Cash Conversion
• HMO with free dependents
• Retirement Plan
• Life Insurance
• While on work from home setup: Internet and meal allowance are provided
• Employee Assistance Program for mental and social well-being
• Government-mandated Benefits (SSS, PhilHealth, PagIBIG, 13th month pay, Solo parent leave, Special leave for women)

#LI-MB1

Five9 embraces diversity and is committed to building a team that represents a variety of backgrounds, perspectives, and skills.  The more inclusive we are, the better we are.  Five9 is an equal opportunity employer. 

View our privacy policy, including our privacy notice to California residents here: https://www.five9.com/pt-pt/legal.  

Note: Five9 will never request that an applicant send money as a prerequisite for commencing employment with Five9.