Garrett
Location
Bangalore | India
Job description
Define & Implement SOX-ITGC Governance program, SOX ITGC framework in line with any relevant best practices, create and maintain central repository for documentation of controls for all the in scope applications and services.
Define accountabilities and responsibilities among functional and IT teams, work with internal control team to define Control Documentation Requirement guideline & Control Execution Guideline .
Define Control Testing Requirement, define remediation planning documentation & Execution Requirement Timeline, define and implement the ITGC framework.
Train and coach control owners to understand the control and implement the control (by agreeing to the remediation plans).
Identify areas of potential improvement for key processes and procedures and supports the management for processes and procedures.
Responsible for maintaining and updating all aspects of the internal SOX compliance.
Risk Management:
Responsible for driving SOX ITGC to meet requirements for SOX compliance Framework. Ownership of all internal and external SOX audits, ensure and facilitate remediation and mitigation as recommended by external auditors .
Enable internal stakeholders to implement the control effectiveness. Drive timely initial reviews and evidence submissions and performing subsequent project management tasks.
Program Ownership, Business and Customer Engagement:
Responsible for driving and executing periodic SOX ITGC Compliance assessments. Lead and drive control effectiveness with Internal and External Audit teams.
Responsible to define & publish KPI metrics for SOX Compliance areas. Responsible to understand information security requirements from external customers and execute projects to comply with requirements.
Â
Guide the functional IT team members and review the ITGC implementation performed by the team. Identify gaps in the control process and operating environment for all the in scope applications and services. Assists the senior management in defining the control objectives and monitoring compliance efforts.
Governance, Monitoring and Reporting:
Define and implement SOX Governance and drive program level monitoring with service owners across all IT for SOX ITGC deliverables. Track the evidence submission, remediation & mitigation plans and publish dashboards weekly / monthly / quarterly. Take proactive measure to mitigate the gaps and strengthen the business control processes. Report SOX Compliance status and required action plan to senior Management. Serve as a liaison between internal and external auditors. Stays abreast of changes in SOX regulations to ensure timely compliance. Responsible for working with different business owners on implementation, execution and compliance with entity level controls. Evaluates the review and analyzes data pertaining to information systems functions relative to Sarbanes-Oxley compliance. Develop and conduct SOX compliance training to control owners and control operators.
Education/Qualification:
Bachelor s degree in Information Technology or related discipline
10+ years of total experience
5+ years of relevant SOX ITGC compliance and audit programs experience
Experience:
Key Skills and Knowledge:
3-5 years of experience in managing customers and extended Project Teams
5 + years of experience in SOX Audit and Compliance activities
Should have leadership skills (Influencing skills, communication, etc) to work with diverse stakeholders
Must have knowledge in finance and operations as well as information technology
Sound knowledge of SAP and experience with the Sarbanes-Oxley Act of 2002 and the COSO (Committee of Sponsoring Organizations) control framework
Able and willing to work independently and in a fast-paced environment with tight deadlines and minimal supervision
Excellent interpersonal skills, as well as excellent communication skills, verbal and written to both technical and non-technical audiences
Job tags
Salary
