Head of Internal Audit

About The Position

Requirements

• 15+ years of experience in internal audit, risk management, or a related field, with a strong mix of public accounting and industry experience.
• Pre-IPO SOX implementation expertise: You've successfully built an Internal Audit function and led SOX 404 implementation at a high-growth, pre-IPO technology company.
• Public company experience: You've managed Internal Audit operations at a public company and understand the ongoing compliance requirements.
• Strong technical background: Deep understanding of COSO framework, PCAOB standards, and IT general controls (ITGCs).
• CPA, CIA, or equivalent certification strongly preferred.
• SaaS/technology expertise: Experience auditing technology companies with complex revenue models, subscription businesses, and cloud infrastructure.
• Excellent communicator: You can translate complex audit findings into clear, actionable recommendations for both technical and non-technical audiences.
• Builder mindset: You're energized by the opportunity to build something from scratch and create lasting impact.
• Collaborative leader: You work effectively across functions and build strong relationships with stakeholders at all levels.

Nice To Haves

• Experience with Big 4 public accounting firms
• Knowledge of SOC 2, ISO 27001, or other security and compliance frameworks
• Experience with audit management tools and data analytics platforms
• International audit experience, particularly in EMEA or APAC regions

Responsibilities

• Build and lead Internal Audit: Establish Notion's Internal Audit function from the ground up, including developing audit methodology, risk assessment frameworks, and reporting processes.
• Build and manage the Internal Audit team: Hire, mentor, and lead the Internal Audit team, fostering a culture of continuous improvement and high ethical standards.
• Implement SOX compliance: Design and execute our SOX 404 readiness program, including scoping, documentation, testing, and remediation of internal controls over financial reporting.
• Drive risk-based auditing: Conduct comprehensive audits across finance, operations, security, and technology to identify risks and recommend improvements.
• Partner with leadership: Work closely with senior management, including the CFO, CAO, General Counsel, and other executives (and the Audit Committee) to provide independent assurance and strategic guidance on risk management and internal controls.
• Partner with Legal and Security teams to assess regulatory and policy compliance and provide independent assurance over the effectiveness of risk management, governance, and internal control processes.
• Prepare for public company readiness: Build scalable processes and controls that will support Notion through IPO and beyond.
• Foster a culture of compliance: Educate teams across Notion on internal controls, risk management, and audit best practices.