Director, IT Audit

Responsible for the development and execution of a global risk-based technology-focused internal audit strategy, IT audit, and SOX ITGC plans in support of Internal Audit Department requirements.

The position additionally will support in developing and executing the Internal Audit strategic plan and roadmap to build the next generation Audit function.

The Director, IT Audit reports to the Vice-President, Internal Audit.

Job Grade

The Director, IT Audit is a grade 10.

Responsibilities

  • Develop and execute a global risk-based technology-focused internal audit strategy and audit plan
  • Monitor and report on IT internal audit strategic initiatives and IT audit plan project status
  • Oversee the SOX ITGC planning, scoping, testing, deficiency assessment and mitigation plans
  • Design, implement and update global IT internal audit policies, standards and practices
  • Continuously improve internal audit processes, quality of internal audit results and internal audit efficiency
  • Hire, mentor, train, supervise and evaluate IT internal audit team members
  • Manage activities conducted by IT audit co-source partners
  • Develop and maintain strong relationships with industry peers, external auditors and co-source partners
  • Develop and maintain strong relationships with the stakeholders across the first and second line to improve SOX ITGCs and address other technology and security risks
  • Maintain proficiency and competence in IT audit trends, developments and audit techniques through professional development
  • Develop and approve internal audit project objectives, scope and procedures, and present findings and report risk levels to senior management
  • Oversee periodic follow-up on significant audit findings and recommendations to evaluate the adequacy of corrective actions
  • Develop and manage the IT audit budget, monitoring actual expense incurred compared to budget
  • Operate in conformance with the Institute of Internal Auditors International Professional Practices Framework (IPPF)
  • Lead/participate in internal audit department non-audit or special projects related to strategic goals or other Company initiatives.

Requirements

  • Undergraduate degree in engineering or business
  • 12+ years of combined professional experience in IT audit, security, risk, controls or information technology
  • Strong SOX ITGC hands-on testing and managing experience
  • Excellent communication skills – written and oral
  • Project management experience including overseeing multiple projects simultaneously
  • Problem solving and client service skills
  • Strong understanding and appreciation of information technology (for example; application development, cloud, network infrastructure, vulnerability management, cybersecurity, database and server security, access control, etc.)
  • Experience in influencing, persuading, and making pitches to senior leadership
  • Leadership qualities, including experience managing a team
  • Ability to work in US time zones mainly Pacific and Eastern time zones
  • Experience in the software industry is highly preferred.
  • Professional certifications like CISA, CISSP, CISM or similar preferred
  • Ability to use GitLab

Hiring Process

Candidates for this position can expect the hiring process to follow the order below. Please keep in mind that candidates can be declined from the position at any stage of the process. To learn more about someone who may be conducting the interview, find their job title on our team page.

  • Qualified candidates will be invited to schedule a 30 minute screening call with one of our Global Recruiters.
  • Next, candidates will be invited to schedule a 45 minute interview with our Controller.
  • Candidates will then be invited to schedule a 45 minute interview with our CFO.
  • Finally, candidates will interview with Chairman of the Audit Committee.
  • Successful candidates will subsequently be made an offer via email.

Additional details about our process can be found on our hiring page.

 

About GitLab

GitLab is an open core software company that develops the most comprehensive AI-powered DevSecOps Platform, used by more than 100,000 organizations. Our mission is to enable everyone to contribute to and co-create the software that powers our world. When everyone can contribute, consumers become contributors, significantly accelerating the rate of human progress. This mission is integral to our culture, influencing how we hire, build products, and lead our industry. We make this possible at GitLab by running our operations on our product and staying aligned with our values. Learn more about Life at GitLab. Thanks to products like Duo Enterprise, and Duo Workflow, customers get the benefit of AI at every stage of the SDLC. The same principles built into our products are reflected in how our team works: we embrace AI as a core productivity multiplier. All team members are encouraged and expected to incorporate AI into their daily workflows to drive efficiency, innovation, and impact across our global organisation.

See our culture page for more!

Work remotely from anywhere in the world. Curious to see what that looks like? Check out our remote manifesto and guides.

Last modified May 28, 2025: Remove outdated Audit roles information (ce63c84c)
View page source - Edit this page - please contribute. Creative Commons License