Director, Technology Audit (Remote)

About Gap Inc.

Our brands bridge the gaps we see in the world. Old Navy democratizes style to ensure everyone has access to quality fashion at every price point. Athleta unleashes the potential of every woman, regardless of body size, age or ethnicity. Banana Republic believes in sustainable luxury for all. And Gap inspires the world to bring individuality to modern, responsibly made essentials.    

This simple idea-that we all deserve to belong, and on our own terms-is core to who we are as a company and how we make decisions. Our teamis made up of thousands of people across the globe who take risks, think big, and do good for our customers, communities, and the planet. Ready to  learn fast, create with audacity and lead boldly? Join our team.

About the Role

In this role you will lead the Technology Audit team that develops and executes a risk-based technology audit plan, which may include SOX-IT, cloud based systems, cybersecurity, privacy, digital transformation initiatives, emerging technologies, RPA and analytics. You will lead strategic, complex, and highly visible engagements, identify risks and opportunities, and deliver results that are reported to the Audit & Finance Committee. You will maintain high level of engagement with business partners and senior management, and develop a high function results-oriented team. You will report to the VP of Internal Audit and be a member of the Internal Audit leadership team.

What You'll Do

• Lead and manage IT audits/assessments (e.g., IT asset management, privacy, infrastructure, system implementations, Attack & Penetration or other technical security projects), SOX IT controls testing, tabletop exercises, and other operational areas as needed
• Develop and nurture relationships with Business and Technology Leaders, Information Security, IT Compliance team, external auditor and third-party vendors
• Collaborate with stakeholders and stay abreast of major digital transformation projects, new/emerging technologies and changes in business operations to appropriately update the audit plan and assess risk
• Participate in conducting the company's Enterprise Risk Assessment (ERA), develop annual audit plan, and perform quarterly ERA updates to present changes to Audit & Finance Committee
• Direct internal initiatives supporting the IA framework by leading innovation efforts around RPA, Data Analytics, and Benchmarking
• Manage audit issues, remediation, and effectively communicate with IA process owners/stakeholders
• Develop team managers and seniors, including individual's objective setting, performance reviews, training requirements, and establish development plans
• Develop planning, budget, forecasts and end results; set policies and strategic direction for the Technology Audit function

Who You Are

• Excellent interpersonal and communication skills, with proven ability to communicate complex audit issues and process improvements to tech and business executives, and a high level of integrity
• Strong technical understanding of cloud computing (Azure), ERP (Oracle, Workday), operating systems, applications, data repositories, agile methodology and enterprise architecture; experience in retail industry is preferred
• Experience with Oracle based products (Fusion/EPM/etc.), UNIX, Active Directory/LDAP, Data Analytics and RPA tools (e.g., Blue Prism, Power BI), GRC tools (Workiva, AuditBoard, Oracle GRC, etc.) and other DevSecOps and IT Management tools (Jenkins, GitHub, JIRA, Confluence)
• Robust understanding of COBIT, COSO, Privacy Regulations (CPRA, GDPR, etc.) and working knowledge of PCI, CIS 20, NIST CSF and other IT and security frameworks
• Strong analytical, organizational and project management skills with demonstrated success managing concurrent projects independently, and ability to work with geographically dispersed/diverse Internal Audit team members and business partners
• CISA, CISSP, CISM, CRISC, CIPP/CIPT or CCSP certification is preferred
• Travel up to 10%, including domestic and international locations

Benefits at Gap Inc.

• Merchandise discount for our brands: 50% off regular-priced merchandise at Old Navy, Gap, Banana Republic and Athleta, and 30% off at Outlet for all employees.
• One of the most competitive Paid Time Off plans in the industry.*
• Employees can take up to five "on the clock" hours each month to volunteer at a charity of their choice.*
• Extensive 401(k) plan with company matching for contributions up to four percent of an employee's base pay.*
• Employee stock purchase plan.*
• Medical, dental, vision and life insurance.*
• See more of the benefits we offer.

*For eligible employees

Gap Inc. is an equal-opportunity employer and is committed to providing a workplace free from harassment and discrimination. We are committed to recruiting, hiring, training and promoting qualified people of all backgrounds, and make all employment decisions without regard to any protected status. We have received numerous awards for our long-held commitment to equality and will continue to foster a diverse and inclusive environment of belonging. This year, we've been named as one of the Best Places to Work by the Humans Rights Campaign for the fourteenth consecutive year and have been included in the 2019 Bloomberg Gender-Equality Index for the second year in a row. US Candidates - Non NYCPlease note that effective, June 30, 2022, Gap Inc. will no longer require any of its employees to wear face masks or require proof of COVID vaccination, unless required by local or state/provincial mandates or as part of Gap Inc's quarantine guidelines after being exposed to or testing positive for COVID. Therefore, please disregard any language in any job posting that refers to Gap Inc.'s face mask and proof of vaccination policy as said policy is no longer effective.US Candidates - NYCBeginning December 27, 2021 the City of New York requires all employees in the City who work on site to provide proof that they are fully vaccinated against COVID-19, unless an exemption from the vaccine requirement is approved due to an accommodation for a disability, a sincerely held religious belief or other legally protected basis (including status as a victim of domestic violence, stalking or sex offenses).