IT SOX Specialist

About The Position

Requirements

• 10+ years of hands-on experience in compliance, internal controls, ITGC/ITAC testing, or internal audit within large, complex enterprises supporting enterprise systems.
• 5+ years of experience in Sarbanes-Oxley requirements
• 3+ years in a leadership role.

Nice To Haves

• Bachelors degree in IT or other related discipline.
• Prior experience working in aerospace, defense, manufacturing, or other highly regulated industries.
• Experience implementing or optimizing automated controls and control testing tools.
• Familiarity with corporate compliance programs.
• Familiarity with enterprise systems (e.g., SAP, Oracle, Workday, Salesforce) and integrations.
• Proficient with compliance tools, GRC platforms, or test/evidence management systems; strong Excel and reporting skills.
• Excellent communication skills — able to present findings, influence control owners, and liaise with auditors and senior stakeholders.
• Strong organizational and project management skills, with attention to detail and ability to manage multiple deadlines.

Responsibilities

• Lead day-to-day operations and delivery of the IT SOX program, acting as the primary decision maker for tactical execution, scheduling, and issue resolution.
• Translate strategic direction from the IT SOX Senior Manager into executable plans, quarterly priorities, and detailed SOWs; own on time delivery of the SOX calendar, testing schedules, and year end conclusions.
• Lead remediation coordination: triage identified deficiencies, direct root-cause analysis, approve corrective action plans, and monitor remediation testing until closure.
• Drive remediation plans: track findings, assign owners, monitor remediation timelines, and escalate unresolved issues to Risk & Compliance Lead.
• Produce and deliver detailed operational reporting and dashboards for the IT SOX Senior Manager, FCG, Corporate Audit, and executive stakeholders; maintain program-level metrics and status.
• Chair or coordinate the SOX Change Advisory Board (CAB) meetings for operational changes and enforce CAB decisions for Cycle 08 common risks and controls.
• Act as primary day-to-day liaison and facilitate workshops and training for process and control owners on SOX compliance requirements, evidence standards, and best practices.
• Support continuous improvement initiatives to strengthen control design and testing efficiency (automation opportunities, control rationalization, and standardization).
• Participate in control design and change control reviews for system updates, releases, and process changes to minimize SOX risk exposure.
• Maintain SOX documentation repositories and ensure traceability between risks, controls, tests, and remediation activities.
• Leverage AI and automation to strengthen IT SOX programs, including automated control testing, continuous monitoring, anomaly detection, and remediation workflows (e.g., RPA and GRC automation tools).

Benefits

• health insurance
• flexible spending accounts
• health savings accounts
• retirement savings plans
• life and disability insurance programs
• paid and unpaid time away from work