Auditing, CISA - Certified Information Systems Auditor, CISM - Certified Information Security Manager, Certified Public Accountant (CPA), Change Management, Communication Skills, Computer Science, Data Recovery, Database Backup, Document Management, External Audit, Information Technology & Information Systems, Information Technology/Systems Audit, Information/Data Security (InfoSec), Mainframe Computer, Management of Information Systems/Technology (MIS), Microsoft Windows Operating System, Project Management Professional (PMP), Project/Program Coordination, Project/Program Management, Risk, Risk Management, SAP, SAP ECC (fka SAP R/3 and SAP ERP), Sarbanes-Oxley Act (SOX), ServiceNow, Time Management, Unix Security
We are seeking an experienced IT SOX Compliance Specialist to help manage and coordinate IT Sarbanes-Oxley (SOX) compliance initiatives across North America. This role will be responsible for managing the IT SOX program from a PMO perspective, ensuring strong governance, timely execution of testing and remediation activities, and effective collaboration between IT Business and external auditors.
The ideal candidate brings a strong understanding of IT General Controls (ITGC), risk management, audit coordination, and project management within a SOX-regulated environment.
Basic Qualifications
- Bachelors degree in Information Systems, Computer Science, or related field.
- 5+ years of experience in IT SOX, IT audit, IT risk, or IT compliance that should include managing documentation, controls, testing results, or annual audit project artifacts.
- 3+ years of project or program management experience that include managing multiple workstreams and deadlines, and managing multiple issues, risk items, action items with multiple parties, and tracking them to completion within stipulated timeframe.
- Strong understanding of:
- IT General Controls (ITGCs) which include Access management, Change management, and IT operations controls.
- Reports and Interface.
- IT Automated Controls.
- Experience coordinating with external auditors.
- Strong stakeholder management and communication skills.
- Ability to manage multiple workstreams and deadlines.
Preferred Qualifications
- Experience working in a large public company SOX environment.
- Professional certifications such as CISA, CPA, CISM, PMP.
- Experience with GRC tools (e.g., ServiceNow, AuditBoard, Level Access) and ERP environment like SAP.
- Experience or working knowledge of service management tools, program change/change management tools, code release tool, mainframe security, UNIX security, Windows security, SAP security, database security, backup and recovery concepts, IT job monitoring concepts, user provisioning concept, Segregation of duties concept.