Lead IT SOX Compliance

Vistra•Irving, TX

1d•Hybrid

About The Position

The Lead IT SOX Analyst serves as the Subject Matter Expert (SME) for IT controls within Vistra Corp’s SOX Compliance Program, providing leadership, strategic direction, and advisory expertise across technology systems. This highly visible role is pivotal in driving SOX readiness, control optimization, and continuous improvement initiatives, with a strong emphasis on SAP environments and transformational projects. As a trusted advisor to technology and business leaders, this position partners closely with IT, Finance, Business stakeholders, and internal/external auditors to ensure robust governance, risk alignment, and audit readiness across Vistra’s technology landscape. The ideal candidate brings deep expertise in IT control frameworks, audit management, and SAP IT SOX/Compliance reviews, enabling proactive guidance on SOX implications for IT transformations, system implementations, and Technology Services projects.

Requirements

6+ years of experience in IT SOX/ITGC compliance, audit, or related controls roles.
Strong experience leading mock audits, remediation programs, and managing audit lifecycles.
Technical knowledge across operating systems, databases, middleware, and enterprise applications.
Excellent stakeholder management and written/verbal communication skills.
CISA, CISSP, CPA, or similar professional certification.
Experience supporting M&A due diligence or integration activities from a SOX perspective.
Demonstrated experience with AuditBoard or similar compliance management tools.

Nice To Haves

Hands-on experience implementing Continuous Control Monitoring / automation solutions a plus.
Experience working with cloud platforms (AWS, Azure) and their control frameworks a plus.

Responsibilities

Lead design, implementation, and ongoing maintenance of IT SOX control frameworks, processes, and documentation.
Serve as a primary SOX Subject Matter Expert (SME) across IT systems, particularly SAP, ensuring compliance with regulatory and audit requirements.
IT SOX planning, readiness, and monitoring activities to sustain compliance maturity and continuous improvement.
Perform detailed SAP SOX reviews, including automated control design assessments, configuration evaluations, and change management oversight.
Partner closely with Business Stakeholder, Technology Stakeholders, Security, and Identity teams to align future-state compliance and access control models for enterprise projects .
Act as a key liaison between IT, Finance, Internal Audit, and external auditors to coordinate SOX testing and remediation deliverables.
Ensure consistent execution and timely delivery of compliance reporting, dashboards, and executive-level presentations.
Oversee the maintenance and governance of IT compliance repositories and documentation platforms.
Provide expert analysis and recommendations to senior leadership regarding compliance processes, automation opportunities, and control optimization.
Drive education and awareness of SOX expectations and best practices throughout the IT organization.
Track and report SOX performance metrics year-over-year, highlighting areas of improvement and efficiency gains.