SOX Compliance Expert

About The Position

Requirements

• Minimum of 3+ years of experience in a business, IT, or related role.
• Prior experience with a Big Four audit or consulting firm, specializing in IT audit, SOX compliance, or technology risk management preferred.
• Hands-on experience with IT infrastructure, cybersecurity, or technology risk management is highly desirable.
• Bachelor’s degree in Accounting, Finance, Business, or Information Technology preferred.
• Strong understanding of IT controls, risk management, and financial reporting processes.
• Familiarity with IT governance frameworks (e.g., COBIT, ITIL) is beneficial.
• Excellent analytical and problem-solving skills, with the ability to assess complex situations and provide actionable recommendations.
• Strong verbal and written communication skills, with the ability to effectively communicate technical information to non-technical stakeholders.

Nice To Haves

• Certifications: CPA, CA, CIA, CFA, CISA, or CISSP certification preferred.

Responsibilities

• Provide guidance and advisory support to first line teams on the design of SOX IT General Controls (ITGCs) and key application controls, ensuring they are risk-based and aligned with leading practices.
• Monitor control execution and evidence preparation to ensure completeness, accuracy, and audit readiness before internal or external audit testing begins.
• Track the progress of management action plans for identified deficiencies and escalate delays or high-risk issues to leadership.
• Support leadership with regular reporting on SOX status, open issues, and remediation progress.
• Act as the primary point of contact for IA and external auditors during SOX and other IT audits.
• Coordinate walkthroughs, testing requests, and evidence collection across DIO teams to ensure timely and accurate responses.
• Coach and educate the first line of defense on internal control concepts, SOX requirements, and best practices to improve control execution and documentation quality.
• Build awareness and accountability across DIO teams by communicating the 'why' behind controls and compliance requirements.
• Partner with technology and operations leaders to embed controls into processes and system design, reducing audit issues over time.
• Monitor for trends and emerging risks in areas such as Cybersecurity, Infrastructure, and Data & AI governance, providing insights to leadership.
• Use industry-leading frameworks such as COBIT, NIST CSF, ISO 27001, and CIS Benchmarks to benchmark and enhance DIO’s control environment.
• Identify opportunities to streamline and automate compliance processes, improving efficiency while maintaining strong risk coverage.
• Stay current on evolving SOX regulations and industry best practices.

Benefits

• Employee Assistance Program available to all employees.
• Health, life, disability and voluntary insurance plans.
• Retirement plan contributions to help plan for financial future.
• Accrued Paid Time Off (PTO) and various paid holidays.
• Healthcare coverage designed to complement the provincial healthcare system in Canada.
• Defined Contribution Pension Plan (DCPP), Group Retirement Savings Plan (RRSP) and Tax-Free Savings Plan (TSFA) in Canada.
• Vacation and personal time along with various paid holidays.