Amsterdam, Netherlands

Danny Tingelaar

Head of Internal Audit

Building, expanding, and leading internal audit functions at the intersection of governance, regulation, technology, and financial markets.

Internal audit leader with two decades of experience across financial services, fintech, and digital assets. I specialize in setting up and maturing internal audit functions, strengthening the three lines of defence, and helping organisations meet evolving regulatory expectations.

My work spans governance, risk management, and assurance — combining technical depth in auditing standards with a practical, technology-minded approach to areas such as KYC/AML, information security, IT risk, and custody & safeguarding of assets.

20+
Years in audit, risk & assurance
VARA
Vetted & approved Fit & Proper person
IIA
Standards-led audit functions built
  • Registeraccountant (RA / CPA)
  • Certified Internal Auditor (CIA)
  • VARA Fit & Proper approved

Experience

  1. Sep 2023 — Present

    Head of Internal Audit

    Deribit · Full-time

    Amsterdam, Netherlands · Hybrid

    Set up and lead the Internal Audit Function, focusing on strengthening governance, supporting the three lines of defence, and helping the organisation meet VARA’s regulatory expectations in Dubai. This period coincided with Deribit’s transition from an unregulated business to a licensed Virtual Asset Service Provider — during which I was vetted and approved by VARA as a Fit & Proper person and formally registered with the regulator.

    • Audited priority areas including KYC/AML, information security, back-up & recovery, and the software development lifecycle.
    • Covered IT risk and controls and digital asset custody in a newly regulated environment.
    • Helped identify key risks and build the control maturity needed for a licensed VASP.

  2. 2018 — 2025

    Part-time Lecturer

    Tilburg University · Part-time

    Tilburg, Netherlands · On-site

    Taught internal auditing within the Post-Master Accountancy programme for seven years, focusing on the interaction between internal and external audit, including reliance on internal audit work under standards such as ISA 610.

    • Brought practical experience into the classroom, connecting theory with real-world assurance, risk, and governance.
    • Explored audit coordination, independence, and professional judgement with future auditors.
    • Role concluded in 2025 following a curriculum change.

  3. 2022 — 2024

    Group Internal Audit Manager

    Optiver · Full-time

    Amsterdam, Netherlands

    Delivered audits across trading, risk management, and regulatory topics in a fast-paced, technology-driven market environment — including trading processes such as exercise and assignment, and regulatory areas including IFR/IFD.

    • Covered dividend stripping prevention, business development, and the growing use of data and analytics.
    • Implemented new internal audit tooling to improve audit execution and reporting.
    • Contributed to the External Quality Assessment under IIA Standards, with a positive outcome.

  4. 2017 — 2022

    Senior Manager — Internal Audit & Risk Management Services

    KPMG Netherlands · Full-time · 16 yrs 1 mo total at KPMG

    The Randstad, Netherlands

    Worked in the Advisory practice focused on Internal Audit and Risk Management for financial services and fintech clients — including asset managers, pension funds, banks, trust and fiduciary providers, payment service providers, and telecom companies.

    • Helped clients set up and develop Internal Audit Functions in line with IIA Standards.
    • Led External Quality Assessments and advised Audit Committees and Boards.
    • Acted as part-time Head of Internal Audit for several smaller financial institutions.

  5. 2006 — 2017

    Manager — Financial Statement Audits

    KPMG Netherlands · Full-time

    The Randstad, Netherlands

    Progressed from junior trainee to manager while completing part-time Accountancy studies at Nyenrode. Worked primarily with financial services clients — banks, investment managers, investment funds, pension funds, and structured finance entities.

    • Financial statement audits under Dutch GAAP, IFRS, and US GAAP.
    • Assurance engagements including ISAE 3402, ISAE 3000, SOC1/SOC2, and SAS 70.
    • Early work in data analytics and audit innovation using SQL, Python, and data visualisation.

  6. 2013 — 2014

    Secondment — Dutch Department Coordinator

    KPMG India (Global Services) · Full-time

    Delhi / Gurgaon, India

    Completed an international secondment to KPMG Global Services in Gurgaon, coordinating the Dutch department within the global delivery centre and supporting audit work for Dutch financial services clients.

    • Worked across teams in the Netherlands and India to ensure consistent, high-quality audit procedures.
    • Supported planning, quality reviews, methodology alignment, and knowledge transfer.
    • Strengthened cross-cultural collaboration in international teams.

Education & Certifications

2006 — 2014

BSc · MSc · Post-Master, Accountancy

Nyenrode Business University

Completed the Bachelor, Master, and Post-Master in Accountancy part-time alongside my career, as part of the path to becoming a Certified Public Accountant (Registeraccountant). Combined financial reporting, auditing, and business economics with ethics, law, and risk management.

2018

Certified Internal Auditor (CIA)

The Institute of Internal Auditors (IIA)

The global benchmark for internal audit competence, demonstrating in-depth knowledge of the International Standards for the Professional Practice of Internal Auditing across internal audit, risk management, and governance.

Areas of Expertise

Audit & Assurance

  • Internal Audit Function set-up
  • IIA Standards
  • External Quality Assessments
  • Risk-based auditing
  • ISA 610
  • ISAE 3402 / 3000
  • SOC 1 / SOC 2

Governance & Risk

  • Three lines of defence
  • Risk management
  • Governance & control frameworks
  • Audit Committee & Board advisory
  • Regulatory engagement (VARA)

Domain Expertise

  • KYC / AML
  • Information Security
  • IT Risk & Controls
  • Software Development Lifecycle
  • (Digital Asset) Custody
  • Market, Credit & Model Risk
  • MiFID · SOX · IFR / IFD

Data & Technology

  • Data analytics
  • SQL
  • Python
  • Data Visualisation
  • Audit Tooling
Built with v0