Lead Cybersecurity - SOX

About The Position

Requirements

• Proven experience in SOX compliance, internal audit, or risk management within a Cybersecurity/IT Team
• Experience working with technical team(s) to gather SOX evidence and articulating findings to non-technical audit team(s)
• Excellent analytical, organizational, and communication skills.
• Knowledge of File Integrity Monitoring (FIM) and Segregation of Duties Controls
• Technical background/experience within a Cybersecurity / IT organizations
• Knowledge of key technical components (Windows, Linux, and Database)
• Scripting experience (Cron, Linux, PowerShell, CMD line)
• Operating System knowledge (e.g., Schedule Jobs, Schedule Task)
• Experience with File/Directory Hierarchy and Structure
• Experience documenting and performing lookback analysis and plan for remediation.

Nice To Haves

• Experience conducting FIM highly preferred
• Certified Information Systems Auditor (CISA)
• Certified Sarbanes-Oxley Compliance Professionals (CSOE)
• Certified Internal Auditor (CIA)
• Bachelor’s degree in Accounting, Finance, Information Technology, or a related field.
• Leads complex cybersecurity work and is a SME in a specific cyber area and impacts multiple applications/systems.
• Bachelor’s degree (BS/BA) desired in Computer Science or Cybersecurity.
• 5+ years of related experience.
• Certification is required in some areas.

Responsibilities

• Operational Support – Collect evidence related to platform changes, ensuring proper change requests (CRs) are in place before modifications.
• Execution & Evidence Gathering – Focus on collecting necessary compliance evidence rather than direct engagement with auditors.
• Regulatory Compliance – Ensure compliance with SOX regulations and internal control frameworks.
• Risk Assessment – Identify and evaluate financial and Cybersecurity control risks to mitigate potential compliance issues.
• Control Testing – Conduct testing of key controls to assess effectiveness and compliance with regulatory requirements.
• Documentation – Maintain thorough documentation of control processes, findings, and remediation efforts.
• Audit Support – Collaborate with internal SOX PMO during SOX audits and assessments.
• Remediation Management – Address control deficiencies and oversee the implementation of corrective actions.
• Process Improvement – Identify and recommend enhancements to compliance processes for greater efficiency and effectiveness.

Benefits

• Medical/Dental/Vision coverage
• 401(k) plan
• Tuition reimbursement program
• Paid Time Off and Holidays (based on date of hire, at least 23 days of vacation each year and 9 company-designated holidays)
• Paid Parental Leave
• Paid Caregiver Leave
• Additional sick leave beyond what state and local law require may be available but is unprotected
• Adoption Reimbursement
• Disability Benefits (short term and long term)
• Life and Accidental Death Insurance
• Supplemental benefit programs: critical illness/accident hospital indemnity/group legal
• Employee Assistance Programs (EAP)
• Extensive employee wellness programs
• Employee discounts up to 50% off on eligible AT&T mobility plans and accessories, AT&T internet (and fiber where available) and AT&T phone.