SOX IT Controls Lead

Stripe•Roseburg, OR

About The Position

The SOX IT Controls Lead is a key member of Stripe’s Internal Controls over Financial Reporting Compliance function within the Chief Accounting Organization, building confidence for our investor community through implementing a strong ICFR program. To be successful in this role, you will need to be a subject matter expert with a robust background in SOX, IT system change management, IT system access, IT job scheduling and operations, business applications, cross-functional collaboration, and Project Management. You will partner closely with the Technology GRC Team that oversees IT systems internal controls over all in-scope SOX systems, IT policies, procedures, change management, access, job scheduling/operations, and project management for the Company. You will report to and work closely with the Head of ICFR Compliance for the following:

Requirements

Big 4 audit firm or equivalent audit experience required
Experience in a highly automated environment, preferably in a technology company is required; online payments company and ecommerce, specifically, is a plus
12+ years of work experience in managing and/or assessing SOX programs;
Bachelor’s degree; Master’s degree a plus in Accounting, Computer Science, Engineering, Information Systems, or related discipline
Technical certification required (e.g., CPA, CIA, CISA)
Developed expertise and extensive experience with leading and performing SOX IT program design, control implementation, and monitoring of SOX program
Strong communication skills, including presenting to and influencing senior business leaders
Demonstrated success managing concurrent workstreams/projects independently

Nice To Haves

Experience in implementing internal controls in early stage public companies is strongly preferred
Experience working with JIRA and AuditBoard is a plus

Responsibilities

Provide strategic thinking, thought leadership, and guidance on identifying gaps in IT/3rd Party Application controls and designing a proactive risk assessment and inform the design of IT/3rd Party Application controls controls as needed
Prepare and maintain clear, detailed, and accurate SOX IT documentation, including system diagrams, control descriptions, and risk control matrices
Analyze internal controls adequacy and guidance on the creation of new controls based on identified control gaps
Partnering with Technology GRC, provide guidance, assessment, and oversight on the governance of change management, and system access, and job monitoring/scheduling controls; and provide recommendations on the next level of maturity strategy/roadmap and standards
Coordinate ITGC and SOX-related activities with systems owners, cross-functional control owners, external auditors, and outside SOX consultants
Update and maintain company-wide control standards, perform SOX/audit projects, and provide control-related training to process owners
Update and align IT processes, systems, controls, and policies to industry standards and drive remediation efforts for any identified deficiencies
Manage the testing of ITGCs/3rd Party Application controls, including direct interaction with independent auditors on internal control testing
Act as a hands-on leader and SOX Compliance subject matter expert who works with Technology GRC, accounting, and cross-functional process owners to help achieve ongoing design, review, testing, and remediation of the IT systems controls
Be a thought leader on emerging technologies such as artificial intelligence, machine learning, cloud computing, and automation solutions
Conduct and/or manage special projects and ad hoc requests to support the senior leadership team and other duties as assigned