IT Infrastructure Audit Manager

About the Role at Nasdaq

As an IT Infrastructure Audit Manager at Nasdaq, you will be a critical part of the Global Internal Audit organization. Your primary responsibility will involve assessing and ensuring the quality of technology and infrastructure controls across various risk areas. This role requires you to plan and evaluate internal audit programs for Nasdaq’s technology systems, while also ensuring strict compliance with technology policies, procedures, standards, and relevant regulatory expectations.

You will thrive in this position if you are a risk-focused, collaborative professional who is comfortable operating in a results-driven, high-performing international environment. A genuine desire and drive to deliver top technology solutions to today’s markets is essential.

Key Responsibilities

• Execute and report on the adequacy and effectiveness of technology controls across all risk areas.
• Deliver against multiple, often concurrent audit projects, managing conflicting priorities to achieve timely results.
• Plan, determine scope areas, draft risk and control matrices, and develop test procedures for technology infrastructure and operations audits.
• Execute and report on technical controls through continuous auditing and monitoring.
• Document issues and findings, ensuring alignment with corporate policies, procedures, and regulatory standards.
• Utilize automated audit tools as an integral part of audit planning and execution.
• Participate in business, operations, and regulatory audits, project reviews, and audits of business processes to identify and evaluate key IT operational risks and controls.

Required Qualifications

• 6–11 years of risk-focused technology internal audit or related experience (e.g., cybersecurity).
• Proven experience in auditing IT processes & governance, and IT infrastructure including networks, databases, operating systems, server configuration, VMware, end devices, Active Directory, logging, and monitoring tools.
• Experience in auditing data centers and cloud infrastructure (AWS and Azure).
• Strong understanding of technology risk management principles and standards such as COBIT.
• A strong team player who is approachable, collaborative, with experience in managing a team and stakeholders.
• Excellent organizational, project management, and communication skills, with demonstrated ability to write audit reports with minimal supervision and guidelines.

Preferred Qualifications

• Professional auditing certifications preferred: CISA (Certified Information Systems Auditor) or CISSP (Certified Information Systems Security Professional).
• Experience working with global teams (USA and EMEA).
• Fluent English language skills and a strong customer service mindset.

Location and Work Environment

This position is based in New York, NY, operating during U.S. business hours (9:00 a.m. – 5:00 p.m. EST). The role offers a hybrid work environment, requiring at least three days per week in the office, subject to change.

Key skills/competency

• IT Audit
• Infrastructure Audit
• Risk Management
• Technology Controls
• Compliance
• Cybersecurity
• COBIT
• AWS
• Azure
• Project Management