Gitlab hero border pattern left svg Gitlab hero border pattern right svg

Internal Audit

Internal Audit function is responsible to assess the effectiveness of risk management, control and governance processes. Internal Audit will also provide insight and recommendations that can enhance these processes, particularly relating to effectiveness of operations, reliability of financial management and reporting and Compliance with laws and regulations.

Internal Auditor

The Internal Auditor is responsible for assisting the Internal Audit team in performing tasks such as creating data requests, performing testing of controls, document evidence of the testing, follow up with function owners for pending information requests, as directed. The Internal Auditor reports to the Senior Internal Audit Manager.

Job Grade

The Internal Auditor is a grade 6.

Responsibilities

  • Assist in performing testing as per the test programs designed to evaluate the adequacy and effectiveness of internal controls.
  • Assist in documenting GitLab’s financial/audit processes
  • Assist in creating GitLab issues to collect preliminary data, conduct analyses and perform transactional and control based testing
  • Assist in the identification and documentation of weaknesses in control design and effectiveness based on analyses performed.
  • Assist with follow-ups on key management actions from prior audit reports determining if required action was taken

Requirements

  • Ability to use GitLab.
  • At least 3 - 5 years of experience in auditing or a related field
  • Bachelor’s degree in Accounting, Business Administration, or a related field
  • Related professional designation (CPA, CISA, CIA) (preferred)
  • Understanding of internal control concepts and experience in applying them to plan, perform and report on the evaluation of various business processes/areas/functions
  • Ability to work on complex tasks with the required direction and guidance
  • Strong verbal and written communication skills
  • Understanding of the technical aspects of accounting and financial reporting

Performance Indicators

Career Ladder

The next step in the Internal Auditor job family is to move to the Senior Internal Auditor job family.

Hiring Process

Candidates for this position can expect the hiring process to follow the order below. Please keep in mind that candidates can be declined from the position at any stage of the process. To learn more about someone who may be conducting the interview, find their job title on our team page.

  • Qualified candidates will be invited to schedule a 30 minute screening call with one of our Global Recruiters.
  • Next, candidates will be invited to schedule a first interview with our Senior Internal Audit Manager.
  • Candidates will then be invited to schedule a second round of interview with Principal Accounting Officer.

Additional details about our process can be found on our hiring page.


Senior Internal Auditor

The Senior Internal Auditor is responsible for performing individual internal audit projects, as part of the total internal audit plan. This responsibility includes developing internal audit scope, performing internal audit procedures, and preparing internal audit reports reflecting the results of the work performed. Work performed will include coverage of functional and operating units and focusing on financial, IT and operational processes. Additionally, the senior internal auditor performs follow-up on the status of outstanding internal audit issues. The senior internal auditor will also assist internal audit management with periodic reporting to the audit committee, development of the annual internal audit plan, and championing internal control and corporate governance concepts throughout the business. The senior internal auditor may often direct and review the work performed by other internal audit personnel, including resources from the co-sourcing firm. The Senior Internal Auditor reports to the Senior Internal Audit Manager.

Job Grade

The Senior Internal Auditor is a grade 7.

Responsibilities

  • Contributes to the development of the annual audit plan for business units in the assigned audit portfolio
  • Develops detailed and thorough risk assessment for each audit engagement
  • Owns each assigned audit from the initial planning to completion
  • Effectively communicates the objectives, scope and timelines of the audit to the auditees and relevant stakeholders at the start of the engagement
  • Documents detailed working papers and ensures that audit conclusions are supported by sufficient and relevant audit evidence
  • Effectively communicates audit findings to the auditee
  • Drafts audit reports including value-added observations
  • Follows up and monitors the progress of the implementation of recommendations
  • Develops and maintains effective working relationships with business and corporate functions
  • Supports the alignment of activities between the control functions (i.e. Compliance, Finance, External Auditors, etc.) to improve communications and efficiency of audit and risk management activities
  • Assists with quarterly and annual reporting to the Audit Committee, Board of Directors and Senior Management
  • Performs advisory engagements, investigations and special projects as assigned
  • Continually improves skills and competencies required for the position
  • Identifies opportunities for internal audit to provide value added services to the organization
  • Lead end to end walkthroughs to identify risks, control gaps, and improvement opportunities.
  • Ensure appropriate documentation of internal controls including narratives, process flowcharts, control descriptions and risk control matrices
  • Design, execute and complete testing of the design and operating effectiveness of SOX business process and IT controls, including entity and process level controls, IT general and application controls, SOC report reviews
  • Maintains an up-to-date knowledge of the standards and guidance included in the International Professional Practice Framework (IPPF) developed by the IIA; stays current with evolving knowledge in the field of Internal Auditing; maintains compliance with IIA standards and its Code of Ethics

Requirements

  • Minimum five (5) years experience conducting internal audits, including minimum two (2) years of experience in Information Technology industry in internal / external audit preferred
  • Audit experience at a public accounting firm is considered as an asset
  • Knowledge of audit methodologies and frameworks and related governance concepts, tools, techniques, and best practices
  • Undergraduate degree in Business, Accounting or Finance
  • Chartered Accountant/ CPA /CIA certification preferred
  • Certified Internal Auditor (CIA), Certified Information Systems Auditor (CISA), or Certified Fraud Examiner (CFE) designations are considered an asset
  • Excellent written and oral communication skills
  • Have an understanding of enterprise risk management framework such as COSO enterprise risk management framework
  • Ability to communicate information in an understandable form to the right parts of the organization
  • Ability to work effectively in a team environment, both within Internal Audit and across other departments
  • Must be able to work in US and Canada timezones, when required
  • Ability to use GitLab

Performance Indicators

Career Ladder

The next step in the Senior Internal Auditor job family is to move to the Manager, Internal Audit and SOX job family.

Hiring Process

Candidates for this position can expect the hiring process to follow the order below. Please keep in mind that candidates can be declined from the position at any stage of the process. To learn more about someone who may be conducting the interview, find their job title on our team page.

  • Qualified candidates will be invited to schedule a 30 minute screening call with one of our Global Recruiters.
  • Next, candidates will be invited to schedule a first interview with our Senior Internal Audit Manager
  • Candidates will then be invited to schedule a second round of interview with Principal Accounting Officer

Additional details about our process can be found on our hiring page.


Senior SOX Compliance Anaylst

The Senior SOX compliance Analyst is responsible for preparing and implementing a risk-based audit plan to assess, report on, and make suggestions for improving the company’s key operational and finance activities and internal controls. Additionally, the position is responsible for identifying and assisting in documenting existing internal finance and disclosure controls, implementing and documenting new internal controls, and establishing an internal monitoring function to audit the company’s compliance with such internal controls. The position will have a key role in assessing the company’s compliance with the requirements of the Sarbanes-Oxley Act of 2002. The position will be further called on to identify and implement finance department process improvements. The Senior SOX Compliance Anaylst reports to the Senior Internal Audit Manager.

Job Grade

The Senior SOX Compliance Anaylst is a grade 7.

Responsibilities

  • Lead end to end walkthroughs to identify risks, control gaps, and improvement opportunities
  • Design, execute and complete testing of the design and operating effectiveness of SOX business process and IT controls, including entity and process level controls, IT general and application controls and SOCreviews
  • Improve SOX documentation and work papers (i.e. work with process owners to refine risk control matrix, improve process flows, refine / develop test procedures, propose control language and associated risks etc.)
  • Assist in evaluation of new processes, policies and systems to determine relevance to and impact on the SOX program, including assessing design of controls based on identified risks
  • Evaluate audit findings and coordinate remediation of deficiencies
  • Manage and/or contribute to special projects both on-going and recurring (e.g., scaling controls, segregation of duties, implementation support/advisory), as needed, in an effective and efficient manner

Requirements

  • Excellent verbal and written communication skills with the ability to interact effectively with all levels of management
  • Demonstrated problem-solving abilities with customer service orientation
  • Self-starter and flexible team player
  • Ability to work in a fast-paced environment with changing processes and procedures
  • Strong project management abilities
  • Must have advanced SOX compliance experience and be knowledgeable with the following financial cycles: Record to Report, Order to Cash, Hire to Retire, Procure to Pay
  • Comprehension of internal auditing standards, Sarbanes-Oxley, COSO and risk-assessment practices.
  • Must be able to work during US and Canada timezones with the overlap of at least 4 hours
  • Degree in Accounting, Business or Finance required
  • Technical auditing skills and corporate-level audit experience required
  • 5+ years of experience in SOX/internal audit preferred, of which at least 3 years of SOX experience required
  • Chartered Accountant/CPA/CIA/CISA certification preferred
  • Ability to use GitLab

Performance Indicators

Career Ladder

The next step in the Senior SOX Compliance Anaylst job family is to move to the Manager, Internal Audit and SOX job family.

Hiring Process

Candidates for this position can expect the hiring process to follow the order below. Please keep in mind that candidates can be declined from the position at any stage of the process. To learn more about someone who may be conducting the interview, find their job title on our team page.

  • Qualified candidates will be invited to schedule a 30 minute screening call with one of our Global Recruiters.
  • Next, candidates will be invited to schedule a first interview with our Senior Internal Audit Manager.
  • Candidates will then be invited to schedule a second round of interview with Principal Accounting Officer. Additional details about our process can be found on our hiring page.


Manager, Internal Audit and SOX

The Manager, Internal Audit and SOX is responsible for preparing and implementing a risk-based audit plan to assess, report on, and make suggestions for improving the company’s key operational and finance activities and internal controls. The position will have a key role in assessing the company’s compliance with the requirements of the Sarbanes-Oxley Act of 2002. The Manager Internal Audit reports to the Senior Internal Audit Manager.

Job Grade

The Manager, Internal Audit is a grade 8.

Responsibilities

  • Primary responsibility for determining, documenting and implementing the Company’s internal audit policies
  • Document financial processes and perform test of controls for SOX compliance and audits
  • Assist with the execution of the internal audit plan and timely completion of assigned audits
  • Assist with enterprise risk management activities
  • Recommend improvements related to the Company’s key controls
  • Work closely with external auditors
  • Must be able to work collaboratively with the operational accounting team and business functions
  • Responds to inquiries from the CFO, Controller, and company wide managers regarding financial results, special reporting requests and the like
  • Act as a subject matter expert, working with the business partners in accounting and other functions (e.g., legal, corporate development, stock administration) to identify financial risks associated with new or contemplated transactions and resolve complex accounting issues
  • Participate in team planning including setting team goals and priorities, monitoring progress and removing roadblocks

Requirements

  • Minimum seven (7) years experience conducting internal audits, including minimum two (3) years of experience in Information Technology industry in internal / external audit preferred
  • Audit experience at a public accounting firm is considered as an asset
  • Knowledge of audit methodologies and frameworks and related governance concepts, tools, techniques, and best practices
  • Undergraduate degree in Business, Accounting or Finance
  • Chartered Accountant/ CPA /CIA certification preferred
  • Certified Internal Auditor (CIA), Certified Information Systems Auditor (CISA), or Certified Fraud Examiner (CFE) designations are considered an asset
  • Excellent written and oral communication skills
  • Have an understanding of enterprise risk management framework such as COSO enterprise risk management framework
  • Ability to communicate information in an understandable form to the right parts of the organization
  • Ability to work effectively in a team environment, both within Internal Audit and across other departments
  • Must be able to work in US and Canada timezones, when required
  • In-depth knowledge of SEC filing requirements, experience highly preferred.
  • Strong working knowledge of US GAAP principles and financial statements
  • Ability to balance quality of work with speed of execution
  • Ability to use GitLab

Performance Indicators

Career Ladder

The next step in the Manager, Internal Audit job family is to move to the Senior Internal Audit Manager job family.

Hiring Process

Candidates for this position can expect the hiring process to follow the order below. Please keep in mind that candidates can be declined from the position at any stage of the process. To learn more about someone who may be conducting the interview, find their job title on our team page.

  • Qualified candidates will be invited to schedule a 30 minute screening call with one of our Global Recruiters.
  • Next, candidates will be invited to schedule a first interview with our Senior Internal Audit Manager
  • Candidates will then be invited to schedule a second round of interview with Principal Accounting Officer
  • Candidates will then be invited to schedule a final round of interview with our CFO.

Additional details about our process can be found on our hiring page.


Senior Internal Audit Manager

The Senior Internal Audit Manager is responsible for performing individual internal audit projects, as part of the total internal audit plan. This responsibility includes developing internal audit scope, performing internal audit procedures, and preparing internal audit reports reflecting the results of the work performed. Work performed will include coverage of functional and operating units and focusing on financial, IT and operational processes. Additionally, the senior internal auditor performs follow-up on the status of outstanding internal audit issues. The senior internal auditor may often direct and review the work performed by other internal audit personnel, including resources from the co-sourcing firm. The Senior Internal Audit Manager reports to the Principal Accounting Officer.

Job Grade

The Senior Internal Audit Manager is a grade 9.

Responsibilities

  • Develops and updates internal audit methodology for the group
  • Lead audit team in executing internal audit assignment as per approved internal audit plan by adopting risk –based approach
  • Develop fieldwork schedules, priorities and detailed audit programs for achieving audit objectives and goals
  • Update PAO on the progress of the audit and any emerging issues during audit fieldwork
  • Develop audit finding and provide risk rating and audit opinion for each assigned audit
  • Ensure sufficient audit evidences are in place and retained
  • Supervising and coordinating work being performed by co-sourcing auditors. (audit firms)
  • Conduct special investigation as requested by the audit committee, senior management
  • Lead a comprehensive SOX rationalization program to identify key controls and assist with developing a standalone SOX program within Internal Audit
  • Complete the SOX risk assessment and materiality assessment as well as the fraud risk assessment to ensure compliance with COSO standards and appropriate scoping and coverage of the SOX program
  • Prepare quarterly reporting for the Audit Committee
  • Work closely with the management to ensure appropriate coverage for the SOX testing, including Entity Level controls, End User Controls, SSAE-16 report review and IT General Controls
  • Work closely with external auditors to ensure the program meets their requirements in terms of scope, timing and approach
  • Assist in recruiting, screening, hiring, developing and mentoring staff, including career-counseling support by sharing information among the Internal Audit group, transferring knowledge and providing Foster and maintain group spirit and high team moraleinstruction/guidance as appropriate
  • Support the team as a Subject Matter Expert on COSO, ICOFR and SOX strategy and program

Requirements

  • Minimum seven (10) years experience conducting internal audits, including minimum two (4) years of experience in Information Technology industry in internal / external audit preferred
  • Audit experience at a public accounting firm is considered as an asset
  • Knowledge of audit methodologies and frameworks and related governance concepts, tools, techniques, and best practices
  • Undergraduate degree in Business, Accounting or Finance
  • Chartered Accountant/ CPA /CIA certification preferred
  • Certified Internal Auditor (CIA), Certified Information Systems Auditor (CISA), or Certified Fraud Examiner (CFE) designations are considered an asset
  • Excellent written and oral communication skills
  • Have an understanding of enterprise risk management framework such as COSO enterprise risk management framework
  • Ability to communicate information in an understandable form to the right parts of the organization
  • Ability to work effectively in a team environment, both within Internal Audit and across other departments
  • Must be able to work in US and Canada timezones, when required
  • In-depth knowledge of SEC filing requirements, experience highly preferred
  • Strong working knowledge of US GAAP principles and financial statements
  • Ability to balance quality of work with speed of execution
  • Ability to use GitLab

Performance Indicators

Career Ladder

The next step in the Senior Internal Audit Manager job family is to move to the Director, Internal Audit job family.

Hiring Process

Candidates for this position can expect the hiring process to follow the order below. Please keep in mind that candidates can be declined from the position at any stage of the process. To learn more about someone who may be conducting the interview, find their job title on our team page.

  • Qualified candidates will be invited to schedule a 30 minute screening call with one of our Global Recruiters.
  • Next, candidates will be invited to schedule a first interview with our Principal Accounting Officer.
  • Candidates will then be invited to schedule a second round of interview with our CFO.

Additional details about our process can be found on our hiring page.


Director, Internal Audit

The Director, Internal Audit reports directly to the chairman of the audit committee with a dotted line day to day control and administrative reporting relationship with the principal accounting officer. The Director, Internal Audit will be responsible for preparing and implementing a risk-based audit plan to assess, report on, and recommend improvements to the company’s key operational and finance activities and internal controls. Additionally, the position is responsible for identifying and assisting in documenting existing internal finance and disclosure controls, implementing and documenting new internal controls, and establishing an internal monitoring function to audit the company’s compliance with such internal controls. The position will have a key role in assessing the company’s compliance with the requirements of the Sarbanes-Oxley Act of 2002. The position will be further called on to identify and implement finance department process improvements. Once documented, ownership for and changing internal control procedures will reside in the owner of the control.

Job Grade

The Director, Internal Audit is a grade 10.

Responsibilities

  • Drives the reporting package to the Audit Committee.
  • Documents GitLab SOX controls, processes, and recommends additional controls where there are control deficiencies.
  • Is the subject matter expert on controls with GitLab business partners, audit committee, and C-Suite executives.
  • Build and manage a highly functioning, distributed team of direct reports.
  • Manages an intern program to bring on new personnel to train and to fit into the accounting/finance functions.
  • Works with the Legal and Technical Accounting teams to identify related party companies from inquiries from the Board and C-Suite team.
  • Identify, understand, and document processes and procedures surrounding internal controls. Continually monitor and update the assessment of the control environment, keeping abreast of significant control issues, trends and developments.
  • Develop test plans and coordinate the performance of management testing of internal controls required by Sarbanes-Oxley.
  • Identify and assess the implementation of new controls as necessary.
  • Prepare and update a comprehensive risk-based audit plan for evaluating the effectiveness of controls in place to manage significant risk exposures, ensure the integrity and reliability of information and financial reporting, safeguard company assets, and comply with laws and regulations.
  • Identify and design anti-fraud criteria and controls.
  • Monitor and audit the company’s compliance with established internal controls.
  • Establish procedures and plan for conducting internal control audits.
  • Report findings to senior management and the company’s audit committee.
  • Understand the requirements of the Sarbanes-Oxley Act of 2002 (and any related SEC pronouncements) and assist in maintaining processes and functions to help ensure compliance with such requirements.
  • Coordinate activities with external auditors to support their audit and review procedures.
  • Participate in disclosure committee meetings.
  • Review finance department business processes and suggest ways to improve such processes.
  • Other duties, as directed by the Audit Committee and/or the Principal Accounting Officer:
    • Identify and Review Financial Risks within the Company.
    • Develop Audit plans that will be approved by the Audit Committee to review 1-3 Financial Risks audits and report findings first to the area related to these Financial Risks and report final reports to the Audit Committee.
    • Handle other audits or reviews as directed by the Audit Committee, CFO or PAO.

Requirements

  • Previous management experience; ability to contribute to the career development of staff and a culture of teamwork.
  • Comprehensive knowledge of auditing practices, procedures, and principles, sufficient to interpret and analyze complex concepts and apply them in innovative ways. Skills and knowledge should include an extensive understanding of financial, operational, market and credit risk. Should have expert knowledge of generally accepted auditing standards in the US.
  • Capability and desire to evaluate the effectiveness of management in their stewardship of GitLab’s resources and their compliance with established corporate policy and procedures, including corporate governance, code of conduct standards, and business ethics and conduct policy.
  • Creative approaches and solutions necessary to solve complex problems.
  • Strong written and verbal communication skills with experience interacting with and presenting to senior management-level personnel.
  • The candidate must have excellent interpersonal skills and will serve as a member of the senior management team.
  • The candidate should be an energetic, entrepreneurial self-starter capable of self-direction.
  • He/she should be driven to deliver quality results on time, with a high degree of integrity, in a highly ethical and professional manner.
  • The candidate should be self-reliant and have strong initiative as well as possess solid business judgment.
  • He/she must be resourceful and strategic and possess excellent analytical abilities.
  • Able to utilize Best Practices on recommendations and audit findings.
  • A minimum of ten years of experience in a public accounting firm and or software industry with a heavy emphasis on financial and accounting applications and financial and operational controls.
  • Experience in an internal audit function preferred.
  • Experience in the software industry highly preferred.
  • Bachelor’s degree in accounting or related finance field. Chartered accountant (CA) or certified public accountant (CPA) desirable.
  • Certified internal auditor (CIA) or certified information systems auditor (CISA) preferred.
  • Ability to use GitLab

Performance Indicators

Career Ladder

The next step in the Internal Audit job family is to move to the PAO job family.

Hiring Process

Candidates for this position can expect the hiring process to follow the order below. Please keep in mind that candidates can be declined from the position at any stage of the process. To learn more about someone who may be conducting the interview, find their job title on our team page.

  • Qualified candidates will be invited to schedule a 30 minute screening call with one of our Global Recruiters.
  • Next, candidates will be invited to schedule a 45 minute interview with our Controller.
  • Candidates will then be invited to schedule a 45 minute interview with our CFO.
  • Finally, candidates will interview with Chairman of the Audit Committee.
  • Successful candidates will subsequently be made an offer via email.

Additional details about our process can be found on our hiring page.

Compensation Calculator

To find out more about the compensation for this role, please apply to a role first. Once selected for a screening call, you'll be able to sign up here to view our compensation calculator. Be sure to use the same email address for both.

About GitLab

GitLab Inc. is a company based on the GitLab open-source project. GitLab is a community project to which over 2,200 people worldwide have contributed. We are an active participant in this community, trying to serve its needs and lead by example. We have one vision: everyone can contribute to all digital content, and our mission is to change all creative work from read-only to read-write so that everyone can contribute.

We value results, transparency, sharing, freedom, efficiency, self-learning, frugality, collaboration, directness, kindness, diversity, inclusion and belonging, boring solutions, and quirkiness. If these values match your personality, work ethic, and personal goals, we encourage you to visit our primer to learn more. Open source is our culture, our way of life, our story, and what makes us truly unique.

Top 10 Reasons to Work for GitLab:

  1. Mission: Everyone can contribute
  2. Results: Fast growth, ambitious vision
  3. Flexible Work Hours so you are there for other people and free to plan
  4. Transparency: over 2,000 webpages in GitLab handbook, GitLab Unfiltered
  5. Iteration: empower people to be effective, Merge Request rate, everyone using the product, DRI, have an impact
  6. Diversity, Inclusion & Belonging: high percentage of women, Team Member Resource Groups, other initiatives
  7. Collaboration: kindness, saying thanks, intentionally organize informal communication, no ego
  8. Compensation: pay at or above the 50th percentile, stock options, office equipment
  9. Work/Life Harmony: don't compete on hours worked, flexible workday, Friends and Family days
  10. Remote Done Right: all remote, prolific inventor of best practices

See our culture page for more!

Work remotely from anywhere in the world. Curious to see what that looks like? Check out our remote manifesto and guides.

Git is a trademark of Software Freedom Conservancy and our use of 'GitLab' is under license