Senior IT Analyst, Internal Controls/SOX
About The Position
Join our organization as a Senior IT Analyst! We seek a skilled and experienced professional with a strong background in information technology auditing. As a Senior IT Analyst, you will be crucial in evaluating and assessing IT controls to ensure compliance with regulatory requirements and industry’s best practices. Reporting to the Director of SOX & Compliance, you will contribute to the planning, execution, and reporting of IT audits & SOX compliance, focusing on IT general controls (ITGCs), application controls, access controls, and data security. Why This Role Matters Ensure the integrity and resilience of Bonnell’s growing technology landscape by evaluating IT systems, infrastructure, and controls at scale. Advance investor and regulatory confidence by strengthening our SOX, cybersecurity, and application control environments through proactive testing and continuous improvement. Safeguard data and digital operations as a trusted advisor interfacing with IT, Security, Legal, and Finance to mitigate risk and enhance compliance. Drive audit excellence across Bonnell’s systems, including Oracle, JD Edwards, EPICS, BPCS.
Requirements
- Bachelor’s degree in information systems, Computer Science, Accounting, or related field
- 6+ years of experience in IT auditing, preferably in public accounting or corporate internal audit
- Familiarity with industry frameworks such as Sarbanes-Oxley (SOX), COBIT, COSO, and cybersecurity or data privacy regulations
- Hands-on experience evaluating IT controls across ERP systems (e.g., Oracle, JDE, EPICS), and microservice architectures
- Strong understanding of IT processes and systems, including application and access control design
- Excellent written and verbal communication skills, with the ability to translate technical content for both technical and non-technical stakeholders
- Detail-oriented with strong analytical, organizational, and time-management skills
- High ethical standards, sound judgment, and commitment to confidentiality
Nice To Haves
- Relevant professional certifications such as CISA, CISSP, or equivalent
- Experience of reviewing or working with industrial control / manufacturing environments and systems
Responsibilities
- Conduct Sarbanes-Oxley (SOX) and IT operational audits, including planning, scoping, and executing audit procedures in accordance with established guidelines and standards.
- Evaluate and test ITGCs, application controls, and business-related access controls to assess their effectiveness and identify potential risks.
- Review IT processes and systems to ensure compliance with relevant regulations and company policies.
- Collaborate with business units and IT teams to identify control gaps and recommend improvements.
- Assist in providing recommendations and guidance on control enhancements to mitigate identified risks.
- Work closely with external auditors during the audit process, providing requested documentation and addressing findings or recommendations.
- To enhance audit effectiveness, stay informed about emerging technologies, industry trends, and regulatory changes.
- Prepare audit reports and communicate findings, recommendations, and action plans to management.
- Assist in developing and implementing remediation plans for identified control deficiencies.
- Foster strong working relationships with stakeholders, promoting effective communication and collaboration.
- Carry out special project work as required.
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
