As a member of that team, you will work across the organization to design, implement and support the IT general controls (ITGC) framework, lead remediation efforts and identify emerging IT risks. You will be reporting to the IT Risk and Compliance Manager, while working closely with internal and external audit teams, engineering and product. You will continue to raise the bar to ensure our products, practices, systems and infrastructure remain compliant with IT SOX requirements and meet the ever evolving needs of the greater business.
- Develop and sustain a rigorous ITGC compliance program
- Execute various controls in the ITGC framework including periodic user access reviews and change monitoring reviews
- Design and improve ITGCs across our products and infrastructure
- Work with a variety of internal teams to ensure their practices and products are compliant with IT SOX requirements and other related compliance obligations
- Develop, collect, and maintain necessary evidentiary documentation for internal and external auditors
- Work with internal teams to design and maintain automated systems to help with continuous compliance
- Identify risks and gaps in our ITGC framework and facilitate remediation
- Coordinate all required IT SOX internal controls testing including:
- Planning, coordinating, and facilitating audit walkthroughs
- Managing the distribution and receipt of external and internal audit requests
- Communicating audit results and progress via written reports and oral presentations to various stakeholders
- Working with control owners to periodically certify controls and processes
- Create and maintain relevant documentation including narratives, control documentation and process flowcharts
- Provide training and guidance to teams across the organization on effective ITGC procedures
