IT Audit SOX Controls Analyst
Prestigious Organization is seeking an IT Audit Professional with strong SOX experience. The IT General Controls Analyst will provide oversight regarding audit, regulatory and risk management activities across IT functional areas, such as the development and maintenance of regulatory documentation (eg Sarbanes-Oxley Act compliance). The incumbent will design, implement and manage IT general controls in addition to monitoring the existing control environment and mitigating any discovered risks.
What You Will Be Responsible For:
Define and manage the company's IT General Controls framework with respect to Sarbanes-Oxley (SOX).
Perform walkthroughs with IT control owners to verify appropriate processes and controls are in place.
Act as primary point of contact with both Internal and External Auditors during interim and roll forward SOX testing
Assess risks and internal controls by identifying areas of non-compliance, evaluating manual and automated processes, identifying process weaknesses and inefficiencies.
Ensure audit conclusions are based on a complete understanding of the process, circumstances and risk.
Educate IT and business leadership on appropriate risk mitigation strategies and approaches
Provide oversight regarding audit, regulatory, and risk management activities across IT functional areas, such as the development and maintenance of regulatory documentation.
Provide oversight during the design, development and implementation of new IT projects to ensure control compliance
Define segregation of duties rules and conduct annual SOD reviews.
Bachelor's Degree in Computer Science or related field preferred.
At least 2 years of relevant experience in internal and/or external audit.
Experience performing IT SOX audits, designing SOX controls, and working directly with external audit teams.
Experience designing segregation of duties rules and performing SOD assessments.
Excellent listening skills and ability to apply professional skepticism to identify gaps and opportunities for improvements.
Ability to work independently and communicate within a team environment.
Ability effectively communicate and explain technical issues to non-technical individuals.
Experience in a public accounting firm and relevant professional certification (CISA, CIA, etc.) preferred.