Overview
The IT SOX Manager will serve as a member of the Internal Controls of Financial Reporting (ICFR) PMO Leadership team, and will report to the Director, ICFR.
As a member of the ICFR leadership team, you will have the opportunity to significantly influence the development and realization of the ICFR team’s value proposition through the build out of a Sarbanes Oxley (SOX) compliant ICFR framework at a growing company with an evolving process and system footprint within a defined 2nd Line of Defense capacity.
You will play a vital role in advising the business on appropriate business process and IT controls. This is a unique opportunity to put your own stamp on the SOX Program while galvanizing our value proposition as management’s trusted business advisor within the 2nd Line of Defense.
This role will be responsible for the IT risk component of the comprehensive ICFR / SOX program, including oversight of process documentation, risk assessment, and control design for ITGC and ITAC components of the broader control environment with subsequent testing of control design and effectiveness.
What You'll Do
- Manage SOX grade compliance assessments by understanding IT systems, business processes, objectives, structure, policies and procedures, and internal controls.
- Oversee walkthroughs and evaluate design and operating effectiveness of IT General Controls (ITGCs), IT application controls (ITACs), and key reports for complex applications.
- Oversee the execution of IT work performed by our third-party co-source partner involving documentation of IT systems, processes, and controls using narratives, flow charts, data flow diagrams, control designs, etc.
- Assess the effectiveness of internal controls over key IT risks and provide recommendations for remediation, as necessary.
- Coordinate with the broader SOX team, critical stakeholders, and external auditors to ensure compliance with SOX reporting requirements while optimizing efficiencies.
- Develop and deliver training programs to enhance awareness and understanding of internal control responsibilities among control owners and key stakeholders.
- Track and monitor overall ITGC SOX assessment status for monthly and quarterly reporting to senior management. Ensure all ITGC SOX deliverables and deadlines are met.
- Identify opportunities for enhancements in overall SOX program efficiency and effectiveness for centralization, standardization, and automation.
- Limited, but potential to travel domestically and / or internationally. Potentially 10-15% travel at intervals.
What's in it For You?
To help you make the best decision for your personal growth, it’s important to us to share a glimpse of what we offer our top asset, our people :
- Competitive base salary.
- Generous 30+ Days Comprehensive Paid Time Off Package inclusive of Paid Time Off, 10 Company Holidays, 2 Floating Holidays, 5 Sick Days, and 2 Volunteer Days.
- Health benefit options with you in mind; 5 affordable medical plan options with rates based on your salary, company paid HSA contribution with eligible HSA plan selection, 2 dental plan options offering orthodontia coverage and 3 cleanings per year, and 2 vision plan options.
- Company match 401(k) plan 50% up to 6%!
- Support of your fitness wellness goals! We offer up to 75% off at over 11,000 gyms and fitness centers.
- Opportunity to prioritize your mental health with 24 / 7 access to licensed therapists.
- Pet benefits & discounts.
- Access to our Employee-led Resource Groups (ERGs) that lend a voice to the variety of demographics represented throughout our company.
What You'll Need
- Bachelor’s degree in computer science / information systems disciplines, business administration, finance, accounting, or another relevant field.
- 5+ years supervisory experience overseeing the IT component of a public company SOX framework.
- Knowledge of standard SEC rules on cybersecurity risk management, strategy, governance, and incident disclosure by public companies.
- Experienced in change management specifically within a transformation of IT systems, tools, processes, and internal control structure.
- Experience in utilizing various methodologies and frameworks, including COBIT and COSO.
- Ability to work independently, under general supervision, and with a team; ability to take initiative and exercise strong independent judgment.
- Effective verbal and written communications, including active listening skills, and skill in presenting findings and recommendations.
Preferred Business Experience and Technical Skills :
- Master’s degree in accounting, finance, business administration, and / or Information Systems disciplines.
- Professional certification(s) such as a CISA, CIA, CPA, CRMA, CISM, and / or CISSP designation.
- Familiarity in the utilization of a GRC tool(s), ., AuditBoard, Wdesk, and / or TeamMate.
- Information Security, Network / Cybersecurity, or equivalent IT / Network management experience.
- Exposure to NIST 800-53, SOC 1 and SOC 2 Type 2 concepts.
- Experience applying data analytics in the development of continuous monitoring capabilities.
- Collaborative business transformation and project management experience in a matrix organization.
Grow, with us
AssuredPartners is committed to embracing diversity, equity, and inclusion to create a workplace that welcomes and thrives on the unique experiences, perspectives, and contributions of all team members.
AssuredPartners is bringing the best people and most diverse talent forward to drive growth, innovate and think bigger!