SOX IT Architect

Responsibilities & Tasks

Oversee and align with Internal Audit test of Controls Framework to design an effective evidence collection program
• Oversee team of evidence collectors to ensure orientation with Prior Evidence Collection SOPs and standards including screen shot formats, time/schedule stamps, acknowledgement and acceptance marks, etc.
• Oversee and perform SOX evidence collection focusing on ITGC – from key applications and security controls, particularly in areas like access control, change management, and data integrity.
• Test the design and operating effectiveness of evidence collection within key financial systems (e.g., ERP, databases, financial reporting applications).
• Ensure IT processes and controls comply with SOX requirements, industry regulations, and best practices.
• Identify and assess risks related to financial application processes and technology environments.
• Work with control owners to identify gaps, propose remediation efforts, and track resolution.
• Document collection challenges, risks, and recommendations, presenting them to management and key stakeholders.
• REMOVE—>Assist in the coordination and execution of external audit requirements, ensuring a smooth audit process.
• Provide input on the development and improvement of IT governance frameworks and SOX compliance programs.
• Support the company’s efforts to maintain compliance with evolving regulatory requirements (e.g., cybersecurity frameworks, data privacy laws).
• Continuously monitor and assess technology

Experience, Skills and Qualifications Required

Bachelor’s degree in information technology, Computer Science, Accounting, or a related field.
• 6-8 years of experience in IT auditing, specifically in SOX compliance or a related field (Big 4 firm experience is a plus).
• Knowledge of IT General Controls (ITGCs) and Application Controls as they relate to SOX.
• Strong understanding of ERP systems (e.g., SAP, Oracle), financial applications, and associated risk areas. Strongly preferred: JD Edwards & Oracle HRMS
• Experience with audit tools such as ACL, IDEA, or GRC software (Governance, Risk, and Compliance). Strongly preferred: Audit Board GRC
• Experience with database and reporting tools including SAP, Business Objects, PowerBI.
• Experience leading a team with day to day tasks and assessing performance required
• Experience reporting necessary data to leadership required
• Certifications such as CISA (Certified Information Systems Auditor), CISSP, or CPA preferred.
• Strong analytical, problem-solving, and communication skills.
• Ability to work independently and with cross-functional teams.
• Understanding of key regulations and standards (e.g., COSO framework, COBIT, NIST).