Senior Manager, Internal Audit IT

Remote $201k–$237k senior 22 days ago full-time quality 8.2/10

Role in brief

Coinbase is seeking a Senior Manager for Internal Audit IT to lead global IT and security audits. This role involves overseeing complex audits, developing a global team, and driving continuous improvement in audit practices. Candidates with extensive IT audit experience, strong leadership skills, and technical knowledge of cloud and cybersecurity are encouraged to apply.

About the role

This role involves owning the complete delivery of intricate IT and security audits that span various functions, including cloud infrastructure, security operations, identity and access management, and data protection. The Senior Manager will also be responsible for auditing vendor risk and key products, ensuring comprehensive coverage across the organization's technology landscape.

A core aspect of this position is leading and developing a global team of internal auditors and co-sourced personnel. This includes setting team goals, providing coaching, managing performance, and establishing succession plans across different regions. The role also requires close collaboration with risk, compliance, security, and technology teams to integrate assurance efforts and maximize control effectiveness.

Success in this role means shaping executive-level reports on technology and security control performance, highlighting key themes, emerging risks, and root causes for senior management and the Audit Committee. The Senior Manager will also partner with technology and security leadership to provide independent challenge on significant initiatives, while maintaining the audit function's independence.

The base salary for this position ranges from $201,365 to $236,900 USD annually, with total compensation potentially including equity, bonus eligibility, and benefits.

Skills that matter here

  • internal audit: This role requires over a decade of experience in internal audit, specifically within IT and information security, or related technology/security roles with significant controls exposure.
  • cloud: The position demands deep technical knowledge of cloud-based technology stacks and cloud security configurations to effectively audit infrastructure and operations.
  • cybersecurity: Extensive experience auditing cybersecurity is necessary, covering areas like security operations and third-party risk across multiple regulatory environments.
  • NIST: Working fluency with industry frameworks such as NIST is required to guide audit practices and ensure compliance.
  • generative AI: The role involves responsibly utilizing generative AI to modernize audit execution, drive efficiency, and improve workflow quality while maintaining human oversight.
  • leadership: Proven leadership experience is essential for building, mentoring, and managing global audit teams, including co-sourced resources and indirect reports across various time zones.

Who this role suits

  • Someone who thrives in an intense, high-bar environment and is driven to push past perceived limits.
  • A leader capable of building and developing global audit teams, fostering talent, and managing performance across regions.
  • An individual who can distill complex technical and risk information into clear, executive-level reports.
  • A professional who can maintain independence while collaborating closely with technology and security leadership on major initiatives.

From the employer

  • Own the end-to-end delivery of complex, cross-functional IT and security audits covering cloud infrastructure, security operations, identity and access management, data protection, vendor/third-party risk, and key products and services.
  • Lead and develop a high-performing global team of internal auditors and co-sourced resources, setting goals, coaching talent, managing performance, and building succession pipelines across regions.
  • Drive integrated assurance across the three lines of defense by partnering with first and second line risk, compliance, security, and technology teams to rationalize testing and maximize control coverage.
  • Shape executive-level reporting on technology and security control effectiveness, distilling key themes, emerging risks, and root causes into clear materials for senior management, the Head of Internal Audit, and the Audit Committee.
  • Partner with technology and security leadership across Engineering, Security, Infrastructure, and Product to provide independent challenge on major initiatives (e.g., cloud migrations, new product launches, architecture changes) without compromising third-line independence.
  • Build continuous improvement into the audit function by driving adoption of data analytics, automation, and generative AI to modernize IT and security audit execution, including continuous monitoring and automated evidence retrieval.
  • 12+ years of experience in internal audit with deep focus on IT and information security, or in first-line / second-line technology/security roles with significant controls and audit exposure.
  • Demonstrated success leading global, cross-functional IT audit portfolios spanning cloud, infrastructure, cybersecurity, and third-party risk across multiple regulatory jurisdictions (US, EMEA, APAC).
  • Deep technical knowledge of cloud-based technology stacks, software development lifecycles, cloud security configurations, and enterprise IT operations risks and controls.
  • Relevant professional certifications (e.g., CISA, CISSP, CIA, CPA) and working fluency with frameworks such as NIST, COBIT, and ITIL.
  • Proven leadership experience building, mentoring, and managing global audit teams, including co-sourced resources and indirect reports across time zones.
  • Utilizes generative AI responsibly, maintaining human oversight to deliver business-ready outputs and drive measurable improvements in workflow efficiency, cost, and quality.
  • Base salary varies by location (see range below). Total compensation may also include equity and bonus eligibility, and benefits (medical, dental, vision, 401(k)).
  • Annual base salary range (excluding equity and bonus): $201,365—$236,900 USD.

Questions about this role

What is the company's remote work policy?

Coinbase is a remote-first company, but not remote-only. Employees are expected to gather quarterly for in-person working sessions called 'surges'.

What is the seniority level for this position?

This is a senior-level position, requiring significant experience in internal audit and leadership.

What are the core skills required for this role?

Key skills include extensive experience in IT and information security internal audit, deep technical knowledge of cloud technology and cybersecurity, and proven leadership in managing global audit teams.

Similar jobs

Before you apply

  • Legitimate employers never ask you to pay anything to apply or get hired.
  • Never share seed phrases or private keys. No real job needs them.
  • Do not install software ("test tasks", "trading tools", "video call clients") sent during hiring.
  • Check that the application page's domain really belongs to Coinbase.