- This position will plan and execute control documentation and control testing in accordance with SOX and execute integrated audits that focus on process level and underlying computer application controls.

- This position will also conduct pre-implementation and post-implementation reviews of new applications and technologies. This position will regularly interact with executive leadership and the external auditors.

Key Accountabilities:

Lead corporate IT SOX compliance activities including:

- Developing IT Control Framework which includes IT general controls and application controls

- Updating SOX documentation

- Performing SOX walkthroughs

- Executing control testing for both general and application IT control reviews- including review of system architecture, configuration settings and application functionality

- Follow up action plans for SOX IT findings to ensure timely implementation of remediation plans

- Leads IT internal audit engagements and assessments to evaluate the adequacy of internal controls and deliver audit reports that add value to the area audited

- Perform the planning, fieldwork, reporting, and follow-up phases of IT audits with limited supervision

- Perform infrastructure, network and applications reviews, pre and post implementation reviews of new IT systems/applications

- Evaluate and document system-related controls supporting applications, operating systems, databases, networks, and other technologies

- Assess the design and effectiveness of policies and procedures related to deployment of IT system changes and IT application changes:

- Assess the design and effectiveness of security policies and standards, internet use, network security awareness and enforcement, access controls security architecture and administration, and operating systems.

- Perform data privacy and cyber reviews and related risk analysis

- Demonstrates a thorough understanding of complex information systems, and utilizes knowledge of emerging technology to identify technological developments and evaluate impacts on the business

- Maintain relationships with IT and business management and is seen as a trusted advisor for system development projects and other critical IT initiatives

- Establish and maintain effective relationships with management, external auditors, and other control partners to analyze business risks and controls

- Provides guidance and shares knowledge with staff members during the execution of the audits, and participates in performing procedures especially focusing on complex, judgmental and/or specialized issues

- Take a proactive role in departmental continuous improvement initiatives

Education and Experience:

- Bachelor's degree in business or related field

- CISA

- 8+ years of experience in IT SOX Compliance

- Experience in audit, public or private

- Experience in project management preferred

Skills and Behaviors:

- Ability to direct multiple projects ensuring timely communications and resource planning

- Knowledge of SAP is required

- GRC knowledge is preferred

- Excellent analytical and organizational skills

- Must have strong attention to detail

- Ability to meet monthly deadlines and goals