Senior Internal Auditor, SOX IT

Senior Internal Auditor, SOX IT

The SOX IT Senior Internal Auditor will report to the Manager, Internal Audit and assist with the SOX ITGC compliance program. The position will be responsible for the implementation, maintenance, and remediation of SOX IT compliance initiatives as well as assisting in the development of company-wide IT control standards and other ITGC control-related projects. The Senior Internal Auditor, SOX IT needs to be able to work as an individual contributor and manage resources from a third-party consulting firm to execute the SOX IT program. The individual has an in-depth knowledge and experience in the areas of SOX ITGCs, SOC1 review, COSO framework, and PCAOB guidance related to the technology industry.

You’ll know you’re the right fit if you have:

       Excellent verbal and written communication skills

       Strong work ethic, are self-motivated, and willing to “Roll-up your sleeves” in order to drive and deliver results and improve processes

       Demonstrated ability to adhere to timelines and critical deadlines; and takes ownership and accountability

       Strong organizational and project management skills

       Strong analytical skills with proven ability to strategize solutions and solve problems

       Ability to make effective and independent judgments, including the ability to develop creative solutions to difficult problems

       Ability to summarize complex and/or technical information into easy-to-understand pieces

       Ability to understand latest industry trends and their potential impact on the company

       Ability to juggle multiple high priorities in a fast-paced environment and have a willingness to learn

 

 What you’ll do all day:

       Assist with the annual SOX IT risk assessment, scoping, testing approach and timing.

       Critically evaluate current set of in scope controls and recommend ways to rationalize and optimize controls through automation.

       Manage internal and external teams in performance of SOX compliance activities

       Identify control gaps and recommendations and work with IT owners to implement process remediations and improvements to ensure compliance.

       Obtain annual SOC 1 reports from the relevant service organizations and assess implication on the company’s internal controls and ability to rely on third-party information.

       Coordinate work with external auditors.

       Work closely with stakeholders to create/maintain system narratives, identify key controls, and assess design of IT key controls.

       Demonstrate clear and concise writing, and verbal skills to communicate complex IT issues in simple terms to executive management and team members.

       Produce quality deliverables supporting analysis and recommendations to stakeholders and executive management.

       Conduct Sarbanes-Oxley general IT controls, IT application control and key report testing.

       Work with the Security, Engineering, IT, and Web Operations teams to create and maintain sustainable policies and procedures

       Coordinate annual SOC 1 audit

       Assist with special projects and strategic initiatives including company system implementations and conversions. Assess such implementations for SOX compliance.

 

Skills, Knowledge and Experience

       Minimum requirement: Bachelor's degree in Computer Science, Information Systems, Economics, Accounting, Finance or a related discipline

       Certifications such as CISA, CPA, CISSP, CISM or CIA preferred

       3-5 years with in public accounting and/or industry experience

       Big 4 public accounting firm experience required

       Industry experience with high technology companies and demonstrate proficiency with issues that are typical for technology companies with a complex and fast-paced IT environment

       Strong knowledge of:

        IT General Controls, Sarbanes-Oxley (SOX) Section 404, COSO Internal Controls Framework, COBIT, Enterprise Risk Framework and risk assessment practices;

        SOC 1 review requirements

 


Back to top