Senior Security Auditor @ Roblox

Senior Security Auditor

Posted on 2/4/2023

INACTIVE

Locations

Burlingame, CA, USA

Experience Level

Entry

Junior

Mid

Senior

Expert

Desired Skills

Atlassian

Jenkins

Git

Management

Puppet

SQL

Python

Chef

Requirements

Bachelor's degree or equivalent work experience
5+ years professional IT audit/security compliance experience
Strong technical knowledge in multiple security and privacy compliance frameworks including: GDPR, NIST, ISO 27001, SOC 2, PCI DSS
Strong compliance and risk management skills, CISA, CISM, or CISSP Certification
Beginner to intermediate knowledge of scripting languages (i.e. SQL, Python, Shell scripting etc.)
Proficient with open source software tools (e.g. GitHub, Jenkins, Chef, Puppet, Nagios) Atlassian products and GRC tools

Responsibilities

Interact extensively with engineering teams and implement technical security and privacy audits in areas including but not limited to production engineering security, cloud security, data security, vulnerability management, end-point security, and network security
Support the identification, validation and remediation of controls required by regulatory compliance frameworks
Support and drive business process automation and automation of controls testing by configuring and integrating systems using available tools
Conceive and lead ad hoc analyses of IT & Information Security data to assist other areas of the internal audit function; develop repeatable methods to ensure consistent results and help develop an internal knowledge base
Participate in the development and oversight of required corrective action plans relating to security audit findings
Work with cross-functional teams (including engineering, security, product management, and finance) to help create integrated system requirements and provide security controls expertise
Prepare work papers, write reports or other deliverables in a timely manner to adequately and clearly document testing, support conclusions, communicate findings and recommendations
Manage multiple priorities/projects for on-time delivery

Every day, tens of millions of people come to Roblox to explore, create, play, learn, and connect with friends in 3D immersive digital experiences– all created by our global community of developers and creators.

At Roblox, we’re building the tools and platform that empower our community to bring any experience that they can imagine to life. Our vision is to reimagine the way people come together, from anywhere in the world, and on any device.We’re on a mission to connect a billion people with optimism and civility, and looking for amazing talent to help us get there.

A career at Roblox means you’ll be working to shape the future of human interaction, solving unique technical challenges at scale, and helping to create safer, more civil shared experiences for everyone.

Roblox is looking for a Senior Security Auditor to join the Internal Audit team to perform risk assessments, audits, and readiness exercises around Roblox’s technology environment supporting Information Security Compliance goals. We are looking for a qualified security auditor with demonstrated technical skills. You will test and maintain security controls protecting Roblox’s environment and provide feedback to control owners on the design, implementation and efficacy of those controls. In this role, you will also have the opportunity to work on internal tool implementations and configure systems. In addition, part of this role will include evaluating new systems and products and supporting business partners to ensure their areas are operationally efficient and compliant with regulatory frameworks. You will report into Internal Audit and partner with the Engineering, Information Security, IT and Legal teams at Roblox.

You will:

Interact extensively with engineering teams and implement technical security and privacy audits in areas including but not limited to production engineering security, cloud security, data security, vulnerability management, end-point security, and network security.
Support the identification, validation and remediation of controls required by regulatory compliance frameworks
Support and drive business process automation and automation of controls testing by configuring and integrating systems using available tools
Conceive and lead ad hoc analyses of IT & Information Security data to assist other areas of the internal audit function; develop repeatable methods to ensure consistent results and help develop an internal knowledge base
Participate in the development and oversight of required corrective action plans relating to security audit findings
Work with cross-functional teams (including engineering, security, product management, and finance) to help create integrated system requirements and provide security controls expertise
Prepare work papers, write reports or other deliverables in a timely manner to adequately and clearly document testing, support conclusions, communicate findings and recommendations
Manage multiple priorities/projects for on-time delivery.

You have:

Bachelor’s degree or equivalent work experience
5+ years professional IT audit/security compliance experience
Strong technical knowledge in multiple security and privacy compliance frameworks including: GDPR, NIST, ISO 27001, SOC 2, PCI DSS
Strong compliance and risk management skills, CISA, CISM, or CISSP Certification
Beginner to intermediate knowledge of scripting languages (i.e. SQL, Python, Shell scripting etc.)
Proficient with open source software tools (e.g. GitHub, Jenkins, Chef, Puppet, Nagios) Atlassian products and GRC tools

#LI-Hybrid

For roles that are based at our headquarters in San Mateo, CA: The starting base pay for this position is as shown below. The actual base pay is dependent upon a variety of job-related factors such as professional background, training, work experience, location, business needs and market demand. Therefore, in some circumstances, the actual salary could fall outside of this expected range. This pay range is subject to change and may be modified in the future. All full-time employees are also eligible for equity compensation and for benefits.

Annual Salary Range

$131,180—$160,700 USD

You’ll Love:

Industry-leading compensation package
Excellent medical, dental, and vision coverage
A rewarding 401k program
Flexible vacation policy
Roflex - Flexible and supportive work policy
Roblox Admin badge for your avatar
At Roblox HQ:

Free catered lunches five times a week and several fully stocked kitchens with unlimited snacks
Onsite fitness center and fitness program credit
Annual CalTrain Go Pass

Roblox provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training.

1,001-5,000 employees

Website

Game platform and game creation system

Company Overview

Roblox’s mission is to bring the world together through play. They enable anyone to imagine, create, and have fun with friends as they explore millions of immersive 3D experiences, all built by a global community of developers.

Benefits

Benefits and Perks - The health and well-being of our employees and their families is our top priority. We offer robust and comprehensive programs with variety to best meet your needs.
Well-Being Benefits - With flexible time off and a bi-annual, company-wide spring/summer recharge, Roblox knows how to balance working hard with winding down.
Financial Benefits - Competitive compensation packages, 401(k) matching, and flexible share incentives that let you choose how to share in our success.
Health and Wellness - Comprehensive medical, dental, and vision benefits, family planning resources, and 12 weeks off for all new parents.
Flexible Workplace - Our hybrid work schedule balances working onsite and working remotely. Enjoy daily lunch and an in-house fitness center when working from our San Mateo headquarters.

Company Core Values

Inspire Others
Work Hard
Self-Organize
Respect the Community
Get Stuff Done