IT SOX Manager

• Coordinate SOX testing activities with IT Application Team/Business Team, Internal Auditors and External Auditors.

• Must possess knowledge and experience auditing Information Technology and Cloud Security controls in accordance Sarbanes Oxley (SOX); and/or other related authoritative sources and standards.

• Must possess knowledge of ITGC and application control framework around ERPs and complex IT environment such as the system of engagement, tools, cloud application infrastructure.

• Good understanding of critical control environments measures related to Network and Physical security and environments.

• Oversee the scoping and review of service auditors reports for key applications, and appropriate mapping of Complementary user controls.

• Lead the planning and scoping exercise for SOX Design and Operational control testing and maintain the Risk and Control matrix for ITGC SOX controls.

• Drive continuous improvement and training with IT management.

• Work with IT management to interpret the significance of audit findings, conclude on findings, document action plans, and verify that remediation plans are implemented and escalate critical issues to Executive Director and IT senior management.

Tools Knowledge Required: ServiceNow, SharePoint, JIRA, Subversion, GitHub.

Certification(s) Preferred:

CISA, CISM, CRISC, CISSP, CCSP