Senior Director, Internal Audit

About the Team

DoorDash’s Internal Audit team provides independent assurance that the company’s risk management, governance, and internal control processes are operating effectively. We are a small team that is looking to expand and bring on motivated professionals. We don’t think of ourselves as a typical audit function - we are obsessively focused on risks to the organizations which reflects in the type of projects we support and execute. 

DoorDash is rapidly growing - we are expanding in multiple geos and launching new products. This exciting growth allows us to drive creative analysis, strategy, and solutions. Our focus areas include financial, operational, regulatory, security, IT, and more. 

About the Role

We are seeking a Senior Director, IT Internal Audit to lead the strategy, execution and evolution of DoorDash’s global IT audit function.  In this highly visible role, you will help shape the technology risk management practices across DoorDash - you will oversee a broad portfolio of audits, including IT SOX, cybersecurity, data governance, AI governance, and operational technology. You will report directly to the Chief Audit Executive and serve as a strategic advisor to DoorDash’s technology, security, and engineering leaders. You will bring deep technical audit expertise, exceptional leadership skills, and a passion for innovation to build and lead a world-class IT audit organization that scales with the business.

This role demands someone who can balance strategy with execution (and isn’t afraid to roll up their sleeves) — a leader who can anticipate emerging technology risks, foster strong cross-functional partnerships, translate complex technical concepts into meaningful business insights, and be ready to operate at the lowest level of detail.  You will partner with teams across Security, Platform Engineering, Data Engineering, Privacy Legal, AI, Product, and Compliance to strengthen our risk posture and drive a data-driven approach to auditing.

You’re excited about this opportunity because you will…

Lead the strategic direction of IT Internal Controls and Assurance

• Define and execute a forward-looking IT Internal Audit strategy aligned with DoorDash’s business goals and technology roadmap.
• Partner with executive leadership to identify, assess, and monitor key technology risks, including those tied to digital transformation and AI adoption.
• Collaborate closely with business and engineering leaders to understand their strategic objectives and provide guidance on navigating IT compliance in a practical, business-first focused manner.
• Shape the annual IT audit plan to strike the right balance between compliance, operational resilience, and innovation.
• Drive the use of data analytics and automation to expand audit coverage and deliver more impactful insights.

Drive Global IT SOX Excellence

• Oversee DoorDash’s global IT SOX compliance program, maintaining a strong and scalable control environment across our complex and evolving technology landscapes.
• Act as a trusted partner to external auditors and the Audit Committee, ensuring transparency, alignment, and continuous improvement in IT governance.
• Foster a proactive control mindset by embedding governance principles into how technology is designed, built, and operated - , ensuring systems are secure and compliant by design.
• Promote consistent standards of risk awareness and system reliability across all financial and technology environments.

Shape AI and Machine Learning Governance

• Establish and lead the development of DoorDash’s AI and ML audit strategy, focusing on accountability, fairness, data ethics, and regulatory compliance.
• Partner with AI Governance and technology leaders to define principles for model risk management and AI lifecycle assurance.
• Serve as a thought leader on emerging technology and AI risk, representing Internal Audit with senior stakeholders
• Drive the integration of AI risk considerations into the broader enterprise risk framework.
  
  

Strengthen Enterprise Data Governance & Trust

• Provide strategic oversight of audits focused on data governance, privacy, and information integrity.
• Partner with data, security, and privacy leaders to build an enterprise-wide data control framework  that supports business growth while meeting compliance requirements.
• Champion a culture of data accountability and transparency, ensuring that data-driven decisions are built on reliable, well-controlled infrastructure.
• Promote  the adoption of scalable tools and metrics to monitor data risk and enable proactive remediation.
  
  

Elevate IT Operational and Transformation Audits

• Oversee global IT operational audit programs focused on systems resilience, change management, and technology modernization.
• Anticipate and assess risks tied to major platform migrations, automation initiatives, and global expansion projects.
• Partner with  technology and business leaders to embed risk management principles into digital transformation and product lifecycle initiatives.

Lead Cybersecurity Assurance Oversight

• Shape and lead DoorDash’s global cybersecurity audit and assurance program.
• Provide meaningful insights on cybersecurity threat posture, vulnerability management, and incident readiness to leadership and the Audit Committee.
• Partner with Global Security Governance and Privacy teams to ensure alignment with frameworks such as NIST, ISO 27001, and SOC 2, and emerging regulatory standards.
• Establish a proactive, analytics-based approach to monitor cybersecurity risks and strengthen organizational resilience.

Leadership & Team Development

• Lead, mentor, and develop a global team of IT and cybersecurity auditors, empowering them to grow and deliver impactful work
• Manage co-sourced partners to ensure high-quality deliverables  and alignment with DoorDash’s culture and goals.
• Foster a collaborative, inclusive, and high-performing environment where innovation, curiosity and critical thinking thrive.

Governance & Communication

• Drive the preparation and presentation of IT audit findings, insights, and recommendations to the Audit Committee and executive leadership.
• Collaborate with external auditors to coordinate audit activities, drive efficiency, and avoid overlap or duplication of efforts
• Contribute to enterprise risk management and other strategic initiatives that strengthen DoorDash’s overall control environment and governance maturity.

We’re excited about you because…

• You have 15+ years of progressive experience in internal audit, IT audit, or risk management within a complex, global, fast-paced, technology-driven environment.
• You have deep technical expertise in IT controls, ITGC, data governance, cybersecurity, cloud architecture, systems implementation, and emerging tech risks (AI/ML, privacy, automation).
• You are a hands-on leader with the ability to roll up your sleeves to operationalize IT compliance initiatives, drive execution, and ensure practical implementation of governance and control frameworks.
• You have a proven ability to oversee the governance of complex, cross-functional system implementations, ensuring alignment with enterprise control frameworks, risk management objectives, and business outcomes.
• You are skilled in leveraging automation and next-generation technologies (e.g. GenAI) to enhance audit efficiency, expand coverage, and deliver deeper, data-driven insights.
• You have demonstrated the ability to navigate and assess complex technical and control environments, diagnose underlying issues, and design tailored, effective solutions suited to dynamic marketplace platforms.
• You have proven leadership experience building and leading high-performing, geographically distributed teams and managing third-party co-source providers.
• You have strong familiarity with frameworks such as COSO, COBIT, NIST, ISO 27001, ISO 420001, SOC 2, PCI DSS, and relevant SOX ITGC requirements.
• You have professional certifications such as CISA, CISSP, CPA, or CIA (multiple preferred).
• You have experience collaborating across Engineering, Security, and Product functions to embed governance into technology design.
• You have excellent communication skills, executive presence, and the ability to translate technical findings into actionable business insights.
• You have a Bachelor’s or Master’s degree in Information Systems, Computer Science, Accounting, or related discipline.
• Must be comfortable regularly exercising discretion and independent judgment in performing job duties, including evaluating options, making informed decisions, and determining appropriate courses of action within the scope of assigned responsibilities.