Description
Job Title: Sr. Manager, Technology Risk and Controls (Revenue)
About the Role
Salesforce is seeking a Sr. Manager, Technology Risk and Controls to join the Digital Enterprise Technology (DET) team. This individual contributor role will operate as a crucial part of the second line of defense within our Governance pillar, dedicated to managing and maturing our SOX IT control environment. The Senior Manager will be responsible for ensuring the ongoing execution, effectiveness, and readiness of DET’s SOX IT controls. You will serve as the primary liaison between internal control owners, our external audit partners, and internal audit teams, translating complex audit requirements including those emerging from AI and Machine Learning (ML) implementations into clear, executable compliance activities to ensure timely completion of SOX activities.
Your Impact - Responsibilities
Play a critical role in ensuring the execution of annual SOX audit activities for Revenue processes, working closely with internal and external audit partners for SOX IT controls within DET to ensure requested support and follow up questions are addressed timely. This includes assessing the impact of AI/ML models on financial reporting and working with audit partners to ensure that automated decision-making within the Revenue cycle is transparent, traceable, and compliant
Act as a central point of contact for DET Revenue technology teams, ensuring stakeholders are clear on their responsibilities as it pertains to control execution, audit walkthrough preparation, and required audit evidence.
Partner with DET Revenue control owners to track, manage, and facilitate the timely remediation of any SOX audit findings or control deficiencies. Proactively identify risks associated with algorithmic bias, data integrity in AI training sets, and model drift that could impact financial accuracy.
Build and maintain strong, collaborative relationships with cross-functional partners (e.g., Internal Audit, Finance, Security, and DET Revenue technology teams to ensure alignment on system scoping and controls approach within DET.
Identify opportunities for control optimization and standardization across the DET control landscape to enhance efficiency, reduce manual effort, and improve the overall control posture.
Minimum Qualifications
Bachelor’s degree in Computer Science, Information Systems, Cybersecurity, or a related field, or comparable professional work experience
7+ years of experience in IT audit, risk and control, risk management, or a related field, preferably within a large, global technology organization.
Deep subject matter expertise in supporting Revenue Cycle (Quote-to-Cash) systems, including the specific ITGCs and automated application controls inherent in complex financial systems.
Strong expertise with SOX IT control requirements and assessments, either in an external audit capacity or in an internal second line function.
Direct experience or deep theoretical knowledge of Internal Controls Related to Generative AI, including the risks associated with Large Language Models (LLMs) and automated workflows
Proven ability to manage audit execution tasks, walkthrough facilitation, control testing support, and deficiency remediation.
Exceptional communication skills, with the ability to clearly articulate complex audit and compliance issues to both technical and non-technical audiences.
Demonstrated ability to work effectively as an individual contributor, managing multiple projects and deadlines autonomously.
Experience partnering directly with external and internal audit teams.
Preferred Qualifications
Relevant certifications such as CISA, CISSP, or CRISC are preferred. Additional certifications or coursework in AI Risk Management or AI Ethics is highly desirable..
Previous experience assessing or implementing IT controls around Salesforce products is a plus.
-
Familiarity with GRC tools and platforms (e.g., ServiceNow GRC, AuditBoard).
*LI-Y
For roles in San Francisco and Los Angeles: Pursuant to the San Francisco Fair Chance Ordinance and the Los Angeles Fair Chance Initiative for Hiring, Salesforce will consider for employment qualified applicants with arrest and conviction records.