SOX Analyst

About The Position

Requirements

• 2–5+ years of experience in IT audit, SOX compliance, or internal audit (Big Four experience preferred)
• Deep knowledge of the Sarbanes-Oxley Act (SOX), including Section 404, and the COSO Internal Control Integrated Framework
• Demonstrated ability to perform risk assessments, evaluate control design effectiveness, and conduct operating effectiveness testing
• Strong understanding of IT General Controls (ITGCs) and their relationship to financial reporting systems (e.g., SAP, Oracle, or similar ERPs)
• Ability to manage complex, recurring compliance processes with strong attention to detail and operational rigor
• Clear written and verbal communication skills to partner with control owners and interface effectively with auditors

Nice To Haves

• Professional certifications such as CISA, CIA, or CPA are preferred

Responsibilities

• Serve as the primary liaison for internal and external SOX auditors, coordinating and delivering accurate PBC evidence to ensure smooth audit cycles
• Own the end-to-end lifecycle of User Access Reviews (UARs) for SOX-critical systems, including evidence collection, reviewer coordination, and remediation tracking
• Validate change management processes by reviewing documentation, approvals, and Segregation of Duties (SoD) controls
• Monitor and document IT Operations controls, including job scheduling and disaster recovery / backup testing
• Maintain SOX documentation and proactively identify opportunities to improve processes, streamline evidence collection, and advance a more scalable, automation-forward compliance model

Benefits

• comprehensive healthcare plans
• family-building benefits (fertility and adoption/surrogacy support)
• flexible time off
• annual wellness stipend
• free OneMedical memberships for you and your dependents
• a CLEAR Plus membership
• a 401(k) retirement plan with employer match