The Head of Internal Audit & SOX leads the company’s Internal Audit function and defines the strategy for strengthening the organization’s risk management, governance, and internal control environment.
This role reports administratively to the Chief Financial Officer and functionally to the Audit Committee of the Board of Directors, ensuring the independence and effectiveness of the Internal Audit function.
You will be responsible for overseeing the company’s SOX compliance program, enterprise risk management (ERM) activities, risk-based operational audits, and internal investigations. The role will design and execute a modern, risk-focused audit program that supports the company’s continued growth while maintaining a strong control environment.
As a senior leader, you will partner closely with executives across Finance, Legal, Security, Engineering, and Operations to identify and evaluate key risks, assess the effectiveness of controls, and provide independent insights that help the company scale responsibly. You will also serve as a trusted advisor to leadership and the Audit Committee by providing perspective on governance, risk management, and operational excellence.
The ideal candidate is both strategic and pragmatic; able to build long-term programs while engaging directly with complex operational challenges and emerging risks. Your work will play a critical role in strengthening the company’s governance framework and enabling leadership and the Board to make informed, risk-aware decisions.
This role is based in our San Francisco office with an office-centric hybrid schedule. The standard in-office days are Monday, Tuesday, and Thursday. Most Asanas have the option to work from home on Wednesdays. Working from home on Fridays depends on the type of work you do and the teams with which you partner. If you're interviewing for this role, your recruiter will share more about the in-office requirements.
What you’ll achieve
- Lead the Internal Audit function: Define and execute the Internal Audit strategy and annual risk-based audit plan, aligning audit priorities with the company’s evolving risk landscape and strategic objectives.
- Partner with the Audit Committee: Provide regular updates on audit activities, key risks, control effectiveness, and remediation progress, ensuring transparency and strong governance oversight.
- Oversee the SOX program: Own the company’s SOX compliance program across business processes, IT controls, and entity-level controls (ELCs), partnering with process owners, external auditors, and consultants to ensure effective execution, remediation, and continuous improvement.
- Strengthen enterprise risk management: Partner with Legal and executive leadership to facilitate the ERM program, including risk identification, assessment, prioritization, and monitoring of key enterprise risks.
- Drive operational excellence through audits: Lead risk-based operational audits across critical business processes, systems, and strategic initiatives, delivering actionable insights that improve operational effectiveness, scalability, and control maturity.
- Lead investigations and sensitive matters: Oversee internal investigations, escalations, and special assignments as needed, ensuring objective analysis, appropriate escalation, and fair resolution in collaboration with Legal, HR, and leadership.
- Influence executive decision-making: Communicate risk insights clearly to executive leadership and provide practical recommendations that strengthen governance and support informed decision-making.
- Build strong cross-functional partnerships: Develop trusted relationships across Finance, Legal, Security, Engineering, and Operations to embed risk awareness and accountability throughout the organization.
- Modernize audit capabilities: Advance automation, data analytics, and continuous monitoring to enhance audit coverage, efficiency, and impact.
About you
- 15+ years of progressive experience in Internal Audit, Risk Management, or Public Accounting (Big 4 strongly preferred), ideally within high-growth technology or global organizations.
- Proven experience leading or overseeing an Internal Audit function and interacting with executive leadership and/or Audit Committees.
- Deep expertise overseeing SOX 404 programs, including business process controls, IT general controls, and entity-level controls.
- Strong experience leading risk-based internal audit programs, operational audits, and enterprise risk management initiatives.
- Demonstrated ability to build and scale internal audit frameworks, methodologies, and governance programs.
- Strong knowledge of COSO framework, PCAOB auditing standards, Sarbanes-Oxley requirements, and internal control best practices.
- Experience partnering with senior leadership and cross-functional stakeholders to influence risk management and control decisions.
- Strong judgment and experience managing sensitive investigations, escalations, and complex organizational matters.
- Excellent communication and leadership skills, with the ability to translate complex risk and control concepts into clear business insights.
- CPA, CIA, CISA, or CFE preferred.
- Demonstrated curiosity about AI tools and emerging technologies, with a willingness to learn and leverage them to enhance productivity, collaboration, or decision-making
At Asana, we're committed to building teams that include a variety of backgrounds, perspectives, and skills, as this is critical to helping us achieve our mission. If you're interested in this role and don't meet every listed requirement, we still encourage you to apply.
What we’ll offer
Our comprehensive compensation package plays a big part in how we recognize you for the impact you have on our path to achieving our mission. We believe that compensation should be reflective of the value you create relative to the market value of your role. To ensure pay is fair and not impacted by biases, we're committed to looking at market value which is why we check ourselves and conduct a yearly pay equity audit.
For this role, the estimated base salary range is between $279,000 - $326,000. The actual base salary will vary based on various factors, including market and individual qualifications objectively assessed during the interview process. The listed range above is a guideline, and the base salary range for this role may be modified.
In addition to base salary, your compensation package may include additional components such as equity, sales incentive pay (for most sales roles), and benefits. If you're interviewing for this role, speak with your recruiter to learn more about the total compensation and benefits for this role.
We strive to provide equitable and competitive benefits packages that support our employees worldwide and include:
- Mental health, wellness & fitness benefits
- Career coaching & support
- Inclusive family building benefits
- Long-term savings or retirement plans
- In-office culinary options to cater to your dietary preferences
These are just some of the benefits we offer, and benefits may vary based on role, country, and local regulations. If you're interviewing for this role, speak with your recruiter to learn more about the total compensation and benefits for this role.
#LI-Hybrid
About us
Asana is a leading platform for human + AI collaboration. Millions of teams around the world rely on Asana to achieve their most important goals, faster. Asana has been named to Fortune's Best Workplaces for 7+ years and recognized by Fast Company, Forbes, and Gartner for excellence in workplace culture and innovation. We offer an exceptional office-centric culture while adopting the best elements of hybrid models to ensure that every one of our global team members can work together effortlessly. With 13+ offices all over the world, we are always looking for individuals who care about building technology that drives positive change in the world and a culture where everyone feels that they belong.
Join Asana’s Talent Network to stay up to date on job opportunities and life at Asana.