Manager, SOX PMO, Business Process

About the Role

Reporting to the Director, SOX PMO Leader within the CAO organization, this role will involve close collaboration with IT, Finance, Operations, and other stakeholders to ensure compliance with SOX regulations. The ideal candidate will be motivated by work that combines program leadership, cross-functional partnership, and hands-on execution.

In this role, you will be responsible for leading assigned process areas, guiding the design and maintenance of effective control frameworks, and partnering with the IT SOX PMO to support compliance readiness. You will also help coordinate walkthroughs, maintain business control documentation, support risk assessment and remediation efforts, and identify opportunities to automate SOX activities.

What You Will Do

• Serve as the primary subject matter expert for assigned SOX business processes and provide guidance to support compliance with SOX requirements
• Partner with the IT SOX PMO to assess new systems, applications, and related controls for compliance readiness
• Assist with the annual SOX risk assessment by helping evaluate process risks and control coverage
• Monitor emerging risks and update controls, documentation, and process expectations as business needs change
• Coordinate and lead SOX business walkthroughs with control owners and cross-functional stakeholders
• Develop and maintain control documentation, including process narratives, flowcharts, and risk and control matrices
• Assess control deficiencies and work with management to develop, implement, and track remediation plans
• Collaborate with leaders across Finance, Operations, Legal, HR, Sales, Engineering, and IT, as well as internal and external auditors, to support an effective SOX audit process

What We Are Looking For

• 5+ years of experience in SOX compliance, internal audit, or a related field
• Strong knowledge of business processes and SOX requirements
• Experience with control frameworks and risk assessment
• Excellent communication and collaboration skills
• Ability to work in a fast-paced, rapidly changing environment
• Strong problem-solving and analytical skills
• Experience with process documentation and maintenance
• Familiarity with IT systems and applications

Nice to Have

• Certification in internal audit or a related field (e.g., CIA, CISA)
• Experience with automation tools and technologies
• Knowledge of DevSecOps and Agile development methodologies
• Familiarity with cloud-based systems and applications

Benefits and Perks

• Competitive salary and benefits package
• Opportunity to work with a leader in the DevSecOps industry
• Flexible, remote work arrangement
• Professional development and growth opportunities
• Access to cutting-edge technologies and tools
• Collaborative, dynamic work environment
• Recognition and reward for outstanding performance
• Comprehensive health and wellness programs
• Generous paid time off and vacation policy

• Develop a strong understanding of SOX requirements and business process controls to stand out as a candidate.
• Showcase your experience with control frameworks and risk assessment in your resume and cover letter.
• Be prepared to provide specific examples of your collaboration and communication skills in an interview.
• Familiarize yourself with Gitlab's values and mission to demonstrate your enthusiasm for the company and role.
• Highlight your ability to work in a fast-paced, rapidly changing environment, and your experience with process documentation and maintenance.
• Consider obtaining a certification in internal audit or a related field to enhance your qualifications.
• Research the company's technology stack and be prepared to discuss your experience with similar systems and applications.