Sr. Technology Auditor

At Gap Inc., we create culture as much as we create clothes. Our ambition is to become a high-performing house of iconic American brands that shape culture.

Our portfolioOld Navy, Gap, Banana Republic, and Athletaeach brings a distinct point of view to how we show up in the world and serve our customers.

Old Navy democratizes style with quality and value for all. Gap champions originality through essential pieces that celebrate individuality. Banana Republic is rooted in a spirit of discovery, creating modern pieces inspired by craftsmanship and travel. Athleta champions the Power of She through confidence, strength, and movement.

Were driven by a shared purpose: to bridge gapsbetween people, perspectives, and possibilitiesto create a better world.

Were building a team that performs at a high levelpeople who think boldly, take ownership, and turn ideas into impact. If youre ready to learn fast and help shape whats next, youll fit right in.

The Internal Audit (IA) Department is seeking a highly motivated IT Audit Senior to join our Internal Audit team in the retail industry. This role focuses on executing IT operational audits and supporting SOX compliance efforts, including testing IT General Controls (ITGCs) and IT Application Controls (ITACs). The ideal candidate has 34 years of experience and a strong understanding of IT risk and control frameworks. This role is based in the San Francisco Office.

• Execute end-to-end IT audits, including planning, risk assessment, execution, and reporting, while driving alignment with cross-functional stakeholders.
• Assess the design and operating effectiveness of IT controls across applications, infrastructure, and data environments, with a focus on key risk areas.
• Identify systemic control gaps and emerging risks, and provide strategic, risk-based recommendations to strengthen the control environment.
• Partner with IT, Security, and Compliance leadership to influence control design, risk mitigation strategies, and process improvements.
• Deliver high-quality audit documentation and insights, and contribute to the evolution of audit methodologies and practices.
• Lead execution of SOX IT testing, including IT General Controls (ITGCs) and IT Application Controls (ITACs), ensuring alignment with ICFR requirements.
• Exercise judgment in evaluating control design and operating effectiveness, including assessing automated controls and system-generated reports.
• Drive SOX activities including walkthroughs, RCM development and refinement, and scoping of in-scope systems and risks.

• 3-4 years of experience in IT auditing, risk management, or information security.
• Experience with SOX IT controls (ITGCs & ITACs) and a solid understanding of ICFR concepts and financial reporting risks.
• understanding of IT environments, including applications, infrastructure, databases, and cloud platforms (e.g., AWS, Azure).
• Knowledge of IT risk and control frameworks (e.g., NIST, ISO 27001, COBIT) and core domains such as access management, change management, and IT operations.
• Strong communication and interpersonal skills, with the ability to partner with stakeholders and influence outcomes.
• Excellent organizational and project management skills, with the ability to manage multiple priorities and deliver high-quality work.

Nice to Have:

• Professional certifications such as CISA, CRISC, CISSP, or equivalent.
• Experience working with external auditors and supporting SOX reliance strategies (e.g., SOC reports, CUECs).
• Familiarity with audit tools, data analytics, and GRC platforms (e.g., AuditBoard, ServiceNow).
• Experience in a retail or consumer-facing environment.

• Merchandise discount for our brands: 50% off regular-priced merchandise at Old Navy, Gap, Banana Republic and Athleta, and 30% off at Outlet for all employees.
• One of the most competitive Paid Time Off plans in the industry.*
• Employees can take up to five on the clock hours each month to volunteer at a charity of their choice.*
• Extensive 401(k) plan with company matching for contributions up to four percent of an employees base pay.*
• Employee stock purchase plan.*
• Medical, dental, vision and life insurance.*
• See more of the benefits we offer.

*For eligible employees