IT SOX Compliance Auditor

See Yourself at Telix

As the IT SOX Compliance Auditor, you will be responsible for overseeing the execution of IT SOX compliance testing efforts across the organization. In this role, you will work closely with the global IT team to ensure the effectiveness of IT controls over financial reporting (ICFR), assisting with compliance assessments, testing, and remediation activities. You will partner with key stakeholders to ensure adherence to SOX requirements, document controls and processes, and help drive improvements in internal controls and compliance practices. This hands-on role requires you to collaborate with cross-functional teams to assess, test, and maintain IT general controls (ITGCs), Segregation of Duties (SoD) controls, and automated financial reporting controls, ensuring full compliance with SOX regulations.

Key Accountabilities

• Global IT SOX Compliance Program Execution:
  • Work closely with global IT teams to assist in the design, implementation, and ongoing maintenance of IT controls over financial reporting (ICFR). Domestic and international travel may be required as needed to support compliance activities and collaborate with teams across regions.
  • Conduct detailed testing of IT SOX testing, including IT general controls (ITGCs), application controls, Segregation of Duties (SoD) controls, and automated financial reporting controls in accordance with established procedures and regulatory standards.
  • Identify, assess, and document compliance risks and controls, ensuring that all identified risks are appropriately aligned with COSO Internal Control framework.
  • Identify control deficiencies, including Segregation of Duties conflicts, and collaborate with the global IT team to support the remediation process, ensuring effective and timely resolution.
  • Assist the Global Director of Strategy, SOX and Internal Audit in preparing and presenting key presentations to executive leadership and the audit committee, summarizing IT SOX compliance progress, key findings, control deficiencies, and remediation plans.
  • Travel domestically and internationally, as needed, and foster collaboration across regions.
• Collaboration with Global IT and Cross-Functional Teams:
  • Partner with IT stakeholders globally to assess and document the effectiveness of IT SOX controls, including Segregation of Duties (SoD), and recommend improvements where necessary.
  • Collaborate with finance, internal audit, and other departments to ensure a comprehensive approach to SOX compliance across the organization.
  • Provide guidance and support to IT teams during the testing and remediation process, ensuring smooth coordination and timely resolution of issues.
  • Collaborate with IT stakeholders to provide regular updates on IT SOX compliance status, testing results, and remediation efforts, ensuring alignment with overall IT risk management initiatives.
• Continuous Improvement and Process Optimization:
  • Support initiatives aimed at improving IT SOX processes, recommending enhancements to increase the efficiency and effectiveness of compliance activities.
  • Assist in pre-system implementation reviews along with other special projects.
  • Assist in IT SOX integration for new acquisitions, when applicable.
• Audit and External Relations:
  • Support external auditors during SOX audits, coordinating IT SOX compliance documentation and testing results.
  • Assist in responding to audit findings and drive the resolution of any identified control deficiencies or issues.
  • Maintain accurate and comprehensive documentation of IT SOX compliance activities to ensure readiness for both internal and external audits.

Education and Experience

• Bachelor’s degree in Information Technology, Computer Science, Accounting, Finance, or a related field.
• Certifications such as CISA (Certified Information Systems Auditor), CISSP (Certified Information Systems Security Professional), or CIA (Certified Internal Auditor) are a plus, but not required.
• 5+ years of experience in IT SOX compliance, IT auditing, or IT risk management, with a focus on IT controls, particularly those related to financial reporting.

Skills and Competencies

• Strong collaboration and communication skills, with the ability to partner with IT, finance, internal audit, and other departments to ensure SOX compliance.
• Expertise in IT general controls (ITGCs), Segregation of Duties (SoD), and testing of automated financial reporting systems to ensure proper internal controls.
• In-depth knowledge of SOX regulations, the COSO Internal Control Framework, and how they apply to IT controls and financial reporting.
• Proficiency in using GRC tools (with Workiva experience preferred) to manage SOX compliance processes, track progress, and document remediation efforts.
• Ability to identify, assess, and mitigate IT risks, collaborating with key stakeholders to ensure adequate controls are implemented and operational. 
• Strong analytical and problem-solving skills, with a focus on addressing control deficiencies and driving improvements in IT compliance processes.
• Exceptional documentation skills, ensuring SOX testing, control assessments, and remediation actions are accurately recorded and easily traceable.
• High attention to detail and the ability to maintain high-quality work in a fast-paced environment, managing multiple priorities effectively.
• Ability to work independently while collaborating effectively across global teams to drive IT SOX compliance initiatives and resolve control deficiencies.
• Expertise in preparing reports and presentations for executive leadership, IT stakeholders, and audit committees, clearly communicating compliance status and remediation efforts.