Senior Manager Internal Audit - IT

About IonQ: 

IonQ, Inc. [NYSE: IONQ] is the world’s leading quantum company delivering solutions to solve the world’s most complex problems. IonQ’s newest generation quantum computers, IonQ Tempo and IonQ Forte Enterprise, are the latest in cutting-edge systems that have been helping customers and partners such as Amazon Web Services, AstraZeneca, and NVIDIA achieve 20x performance results. The company achieved 99.99% two-qubit gate fidelity, setting a world record in quantum computing performance in 2025.

The company is accelerating its technology roadmap and intends to deliver the world’s most powerful quantum computers with 2 million qubits by 2030 to accelerate innovation in drug discovery, materials science, financial modeling, logistics, cybersecurity, and defense. IonQ’s advancements in quantum networking position the company as a leader in building the quantum internet.

The Senior Manager Internal Audit - IT is a strategic transformation leader responsible for the organization’s technology risk landscape. This role goes beyond traditional oversight; you will act as a technologist within the audit function, leveraging AI and data science to automate control environments while ensuring the digital backbone of our global operations—including Manufacturing and M&A integrations—remains secure, compliant, and efficient.

Individual contributor with significant leadership and cross-functional influence

Responsibilities: 

Innovation, AI & Audit Transformation

• AI-Enabled Control Testing: Architect and implement AI/Machine Learning models to transition from manual sample-based testing to 100% population testing.
• Annual SOX Audit: Lead SOX IT control design and operating effectiveness including identification of gaps, operating deficiencies, remediation plan and partnership with process owners to optimize control environment 
• Audit Workflow Automation: Leverage Generative AI and Robotic Process Automation (RPA) to automate the documentation of walkthroughs, drafting of audit reports, and the mapping of controls to regulatory frameworks.
• Continuous Control Monitoring (CCM): Partner with IT to build real-time dashboards that monitor key risk indicators (KRIs), moving the department toward a "continuous audit" model.
• Predictive Risk Insights: Use data signals to identify emerging risks in the Quote-to-Cash and Manufacturing cycles before they manifest as material weaknesses.
• Lead the development of automated risk-sensing capabilities and Key Risk Indicators (KRIs) within the ERM framework, leveraging data analytics to provide real-time assurance over tech-stack dependencies and third-party vendor ecosystems

Business Process & Systems Excellence

• Automated Control Testing: Review the automated controls within core value streams such as Quote-to-Cash (Q2C) and Procure-to-Pay (P2P) to ensure data integrity and system reliability.
• Annual SOX Audit: Lead SOX control design and operating effectiveness including ITGC’s,  identification of gaps, operating deficiencies, remediation plan and partnership with process owners to optimize control environment
• SDLC & Implementation: Perform pre- and post-implementation reviews for major system upgrades or ERP deployments to prevent "go-live" control failures.

Business Combinations & M&A Integration

• IT Due Diligence: Lead IT-focused risk assessments for business combinations, evaluating the target company’s security posture and control maturity.
• Post-Merger Integration (PMI): Direct the integration of acquired entities into the corporate Internal Control Framework (COSO), managing the risks associated with data migration and system cutovers.

SOX & Regulatory Compliance (GovCon Focus)

• ITGC Ownership: Lead the testing of IT General Controls (ITGC) and IT Application Controls (ITAC) for SOX 404 compliance.
• Regulatory Standards: Ensure IT systems meet stringent government contracting standards, including NIST 800-171, CMMC, and FAR/DFARS requirements.

You’d be a good fit with: 

Experience & Education

• Education: Bachelor’s degree in Management Information Systems (MIS), Computer Science, or Accounting.
• Experience: 8–10+ years of progressive experience in IT Audit, IT Risk, or Cyber Consulting (Big 4 or large-scale complex corporate environments preferred).

Technical & Professional Skills

• Certifications: CISA required. CISSP, CRISC, or CISM highly preferred.
• Framework Mastery: Deep understanding of COBIT, NIST, ISO 27001, and the COSO Internal Control Framework.
• Influencing Without Authority: Exceptional "executive presence" with the ability to translate complex "tech-speak" into actionable business risks for senior leadership and IIA Standards.

You’d be a great fit with:

• M&A Track Record: Proven experience managing IT control transitions during business combinations or system consolidations.
• Industry Savvy: Strong background in manufacturing or organizations engaged in government contracting.“Nice-to-haves” / desired or preferred experience
• Modern Audit Toolkit: Hands-on experience with SQL, Python, or AI-based audit tools (e.g., Alteryx, MindBridge, or custom GPT agents). 
• Systems & Data: Proficiency in ERP systems (Netsuite/Oracle, Snowflake/DataBricks)

Location: College Park, MD
Travel: Up to 25% 
Job ID: 1383

The approximate base salary range for this position is $128,445 - $167,497. The total compensation package includes base, bonus, and equity.

Compensation will vary based on individual factors such as education, qualifications, and experience of the final candidate(s), specific office location, and calibration against relevant market data and internal team equity.  Posted base salary figures are subject to change as new market data becomes available. Our benefits include comprehensive medical, dental, and vision plans, matching 401K, unlimited PTO and paid holidays, parental/adoption leave, legal insurance, and a home technology stipend.  Details of participation in these benefit plans will be provided when a candidate receives an offer of employment. 

IonQ's HQ is located in College Park, Maryland, just outside of Washington DC. We are actively building out our recently opened manufacturing and production facility in Bothell, WA (near Seattle). Depending on the position, you may be required to be near one of our offices in College Park, Seattle, Toronto, Canada, and Basel, Switzerland. However, IonQ will expand into additional domestic and international geographies, so don’t let this stop you from applying!
 
At IonQ, we believe in fair treatment, access, opportunity, and advancement for all while striving to identify and eliminate barriers. We empower employees to thrive by fostering a culture of autonomy, productivity, and respect. We are dedicated to creating an environment where individuals can feel welcomed, respected, supported, and valued.
 
We are committed to equity and justice. We welcome different voices and viewpoints and do not discriminate on the basis of race, religion, ancestry, physical and/or mental disability, medical condition, genetic information, marital status, sex, gender, gender identity, gender expression, transgender status, age, sexual orientation, military or veteran status, or any other basis protected by law. We are proud to be an Equal Employment Opportunity employer.

US Technical Jobs. The position you are applying for will require access to technology that is subject to U.S. export control and government contract restrictions.  Employment with IonQ is contingent on either verifying “U.S. Person” (e.g., U.S. citizen, U.S. national, U.S. permanent resident, or lawfully admitted into the U.S. as a refugee or granted asylum) status for export controls and government contracts work, obtaining any necessary license, and/or confirming the availability of a license exception under U.S. export controls.  Please note that in the absence of confirming you are a U.S. Person for export control and government contracts work purposes, IonQ may choose not to apply for a license or decline to use a license exception (if available) for you to access export-controlled technology that may require authorization, and similarly, you may not qualify for government contracts work that requires U.S. Persons, and IonQ may decline to proceed with your application on those bases alone.  Accordingly, we will have some additional questions regarding your immigration status that will be used for export control and compliance purposes, and the answers will be reviewed by compliance personnel to ensure compliance with federal law.  

US Non-Technical Jobs. Due to applicable export control laws and regulations, candidates must be a U.S. citizen or national, U.S. permanent resident (i.e., current Green Card holder), or lawfully admitted into the U.S. as a refugee or granted asylum. Accordingly, we will have some additional questions regarding your immigration status that will be used for export control and compliance purposes, and the answers will be reviewed by compliance personnel to ensure compliance with federal law.

If you are interested in being a part of our team and mission, we encourage you to apply!