About the Team
The IT Risk & Controls function sits within the Finance Risk Management (FRM) team and plays a critical role in designing secure, compliant, and scalable systems that support our mission.
Our team is responsible for implementing and governing IT General Controls (ITGC) and automated application controls (ITAC) that underpin the integrity of financial reporting.
Our work spans access and change management, segregation of duties, system configuration, and integration oversight.
We partner closely with Engineering, Security, and Compliance to ensure financial systems are compliant, resilient, and automation-ready.
FRM, as the broader function, leads OpenAI’s financial risk posture—spanning governance over internal controls, third-party risk, audit readiness, and financial systems oversight.
Together, we provide the foundation of trust that enables OpenAI to operate at global scale.
About the Role
We’re seeking an experienced, execution-focused Manager or Senior Manager to help build a world-class IT controls environment supporting finance-critical systems.
In this role, you’ll lead the design, assessment, and readiness of controls, evaluate risk across systems and integrations, and ensure that our control environment is rigorous, scalable, and aligned with business growth.
You’ll work closely with Engineering, Security, and Finance teams to embed proactive, technology-driven control solutions into our operations.
This role is based in San Francisco.
We use a hybrid work model of 3 days in the office per week and offer relocation assistance to new employees.
In this role you will:
Overseeing IT risk and control design across enterprise ERPs and third-party applications supporting financial reporting, ensuring end-to-end reliability of system integrations.
Leading risk assessments and control design for revenue workflows and system-driven revenue processes.
Partnering with cross-functional teams to ensure automation logic aligns with financial reporting standards.
Overseeing IT risk for key finance-related domains, ensuring controls are reliable, testable, and clearly owned.
Coordinating infrastructure and platform control reviews, including availability safeguards, access management, and configuration stability.
Managing change management, access governance, and configuration oversight across enterprise applications.
Supporting audit readiness through evidence gathering, documentation, and walkthroughs.
Driving control automation and continuous monitoring initiatives.
Acting as primary liaison for external auditors on IT risk-related matters.
You might thrive in this role if you have:
Bachelor’s or Master’s degree in Finance, Accounting, Business Administration, or a related field.
8+ years of experience in risk management, internal controls, or related functions.
Proven track record in designing, implementing, and monitoring financial and operational controls.
Strong leadership, project management, and communication skills.
Analytical problem-solving skills with experience improving processes for efficiency and reliability.
Deep experience designing and testing ITGC and automated controls across modern ERP and third-party finance platforms (e.g., cloud-based financial/HR/Procurement systems).
This includes integration oversight, access/change management, and control automation across complex, multi-system environments.
Experience with control readiness and implementation in fast-paced environments.