Senior Manager - SOX & SOC Compliance

About The Position

Requirements

• 7+ years of experience in IT compliance, internal audit, or a GRC‑focused role within a complex, enterprise environment.
• 5+ years of hands‑on experience with SOX IT General Controls (ITGC), with direct involvement in audit execution, testing coordination, and remediation activities.
• 5+ years of experience partnering with technology and business control owners to assess control design and operating effectiveness, identify gaps, and drive timely remediation within a first line of defense (1LOD) model.
• 3+ years of experience working directly with Internal Audit and/or external auditors in an enterprise setting, including walkthroughs, evidence coordination, and issue resolution.

Nice To Haves

• Deep knowledge of SOX Section 302/404 requirements, IT General Controls, and SOC 1/SOC 2 frameworks.
• Familiarity with industry frameworks including COSO, COBIT, and NIST.
• Exceptional written and verbal communication skills, with the ability to distill complex technical and compliance topics for diverse audiences.
• Strong presentation skills with demonstrated experience presenting to senior leadership and large audiences.
• Proven ability to influence and drive action across functions and levels without direct authority.
• Strong organizational skills and the ability to manage multiple workstreams and competing deadlines in a dynamic environment.
• Proficiency with GRC tools and platforms; experience with audit management software a plus.
• CISA (Certified Information Systems Auditor) and/or CRISC (Certified in Risk and Information Systems Control) certifications preferred.

Responsibilities

• Design, execution, and continuous enhancement of the company’s SOX IT General Controls (ITGC) program.
• Secondary focus on SOC reporting and readiness activities.
• Partnering closely with Ernst & Young (EY) and internal technology and business stakeholders to coordinate audits.
• Managing ITGC walkthroughs and testing activities.
• Responding to auditor and client requests with high-quality, timely evidence.
• Providing independent oversight as a trusted advisor and primary liaison between technology control owners, Internal Audit, and external auditors.
• Driving consistency and discipline within first line of defense (1LOD) teams.
• Proactively identifying control gaps and remediation needs.
• Ensuring alignment, transparency, and a well-prepared posture ahead of third-line audit activities.

Benefits

• medical
• dental
• vision coverage
• paid time off
• retirement savings options
• wellness programs