Job Description

The Senior IT Auditor is responsible for c ontributing towards planning, executing, and reporting on operational IT audits, evaluating risks and controls, including application, infrastructure, cloud, data management, SDLC, change management, and IT operations, in accordance with IIA standards and department methodologies.Perform IT SOX control walkthroughs and testing, along with preparing the related documentation. Assess the effectiveness of cybersecurity controls, including identity and access management, vulnerability management, logging and monitoring, incident response, and security governance.

In this role, a typical day might include the following:

• Reviewcontrols related tocloud computing (e.g., AWS, Azure), SaaS platforms, data lakes, and analytics environments,including shared responsibility models.

• Design and executedataanalytics‑drivenaudit procedures using tools such as Dataiku or equivalent,toidentifyanomalies, trends, and control gaps.

• Apply automation, continuous auditing techniques, and responsible use of AI, whereappropriate, to improve audit efficiency, coverage, and insight, including assessing AI‑enabled business processes and controls.

• Managetimelycompletion of audittasks, including communication of status to the auditee and theManager/Director.

• Identify, document, and communicate control deficiencies,root causes,technology risks, and opportunities for improvement, providing practical, actionable recommendations aligned with businessobjectives

• Present the results of audit work to Internal Audit Managementandauditees, including practical recommendations to address identified risks and/or weaknesses in internal controls as well as opportunities to enhance operational efficiencies.

• Prepare clear, concise, and professional audit reports and executive‑level presentations for Internal Audit leadership, management, and key stakeholders.

This role might be for you if have experience with :

• Advanced knowledge ofIT infrastructure, applications, cybersecurity, and automated controls

• Strong understanding of SOX, COSO, COBIT, NIST,GxP, GDPR, and other relevant regulatory and governance frameworks.

• Strong analytical, critical‑thinking, and problem‑solving skills, with the ability to independently assess risk and propose solutions.

• Comfortable working and learning independently and as part of a team

• Excellent interpersonal, communication and writing skills, strong organizational abilities, and attention to detail arerequired

• Experience withdata analytical tools (e.g.Dataiku, Alteryx,etc.)

• Understanding ofAI concepts, associated risks (e.g., model governance, data quality, access, ethical use), and internal controls relevant to AI‑enabled processes.

To be considered for this role, you must have a minimum of 3- 4yearsof progressive experience in IT audit, information security, or technology riskExperienceauditing and evaluatinginfrastructure,cybersecurity risks/controlsand auditing operating systemsPharmaceutical, life sciences, or other regulated industry experiencestronglypreferred.Big 4 or public accounting experience preferred but notrequired

Does this sound like you? Apply now to take your first step towards living the Regeneron Way! We have an inclusive culture that provides comprehensive benefits, which vary by location. In the U.S., benefits may include health and wellness programs (including medical, dental, vision, life, and disability insurance), fitness centers, 401(k) company match, family support benefits, equity awards, annual bonuses, paid time off, and paid leaves (e.g., military and parental leave) for eligible employees at all levels! For additional information about Regeneron benefits in the US, please visit https://careers.regeneron.com/en/working-at-regeneron/total-rewards/. For other countries’ specific benefits, please speak to your recruiter.
Please be advised that at Regeneron, we believe we are most successful and work best when we are together. For that reason, many of Regeneron’s roles are required to be performed on-site. Please speak with your recruiter and hiring manager for more information about Regeneron’s on-site policy and expectations for your role and your location.

Regeneron is an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion or belief (or lack thereof), sex, nationality, national or ethnic origin, civil status, age, citizenship status, membership of the Traveler community, sexual orientation, disability, genetic information, familial status, marital or registered civil partnership status, pregnancy or parental status, gender identity, gender reassignment, military or veteran status, or any other protected characteristic in accordance with applicable laws and regulations. The Company will also provide reasonable accommodation to the known disabilities or chronic illnesses of an otherwise qualified applicant for employment, unless the accommodation would impose undue hardship on the operation of the Company's business.

For roles in which the hired candidate will be working in the U.S., the salary ranges provided are shown in accordance with U.S. law and apply to U.S.-based positions. For roles which will be based in Japan and/or Canada, the salary ranges are shown in accordance with the applicable local law and currency. If you are outside the U.S, Japan or Canada, please speak with your recruiter about salaries and benefits in your location.

Please note that certain background checks will form part of the recruitment process. Background checks will be conducted in accordance with the law of the country where the position is based, including the type of background checks conducted. The purpose of carrying out such checks is for Regeneron to verify certain information regarding a candidate prior to the commencement of employment such as identity, right to work, educational qualifications etc.

Salary Range (annually)

$93,900.00 - $153,300.00