IT SOX Manager

About The Position

Requirements

• Bachelor’s degree in Accounting, Business Administration, Computer Science, Engineering, Information Systems, or related discipline.
• Must have recent hands-on SOX experience
• 5+ years of relevant work experience in a combination of public accounting firms with a focus on SOX compliance and/or corporate SOX experience, with a minimum of 3 years of experience in technology or support of technology.
• Deep understanding of the Sarbanes-Oxley Act, the 2013 COSO framework, NIST, COBIT, SOC, DCAM, and SEC guidance for management's assessment of internal controls over financial reporting.
• Deep understanding of current accounting and auditing principles.
• Critical thinking, analytical, leadership, planning, project management, and organizational skills.
• Proven ability to build relationships and influence and motivate teams to ensure that the work activities are established, understood, supported, and completed in a timely manner.

Nice To Haves

• Professional certification such as CISA, CIA, CFE, CISSP.
• Experience in running a SOX audit in a public accounting with a PCAOB registered firm.
• Experience in IT project management.

Responsibilities

• Lead the design, implementation, and ongoing maintenance of a global IT SOX compliance strategy
• Coordinate successful SOX testing execution with internal and external auditors
• Review and assess IT general control design for effectiveness and scalability, then drive the remediation of identified issues
• Work with internal audit in the execution of SOX testing procedures.
• Support the identification of control weaknesses, exceptions, and deficiencies in managed change, managed operations, and managed access control areas.
• Collaborate with senior technology leadership to ensure full understanding and consistent adoption of key IT SOX controls
• Ensure alignment between relevant technology control owners, technology application teams, and business teams to optimize the efficiency and effectiveness of the SOX examination
• Provide strategic thinking, thought leadership, and guidance both on proactively identifying gaps in IT controls and designing IT controls to address key SOX risks.
• Take ownership of a Risk and Controls Matrix and ensure it is designed in such a way to address key technology risks and optimal audit outcomes while aligning to NIST, SOC, COBIT, ITIL.
• Develop SOX reporting dashboards and scorecards to effectively communicate program status, key challenges, and the roadmap to program conclusions.
• Develop a comprehensive risk assessment which summarizes management’s perspective of the effectiveness of IT SOX controls in ensuring the integrity of the financial statements.
• Update and align IT processes, systems, controls, and policies to industry standards and drive remediation efforts for any identified deficiencies.
• Act as a change agent, influencer, cross-functional leader, and collaborator to drive and facilitate ongoing SOX and compliance training programs for IT process and control owners.
• Maintain and enhance SOX controls documentation so they reflect the current environment and improve the efficiency of the SOX audit.
• Lead special projects and miscellaneous requests to support the broader IT Governance team.