IT SOX Compliance Lead IT SOX Compliance Lead …

in Jersey City, NJ, United States
Permanent, Full time
Be the first to apply
in Jersey City, NJ, United States
Permanent, Full time
Be the first to apply
IT SOX Compliance Lead
As part of the Global Technology Regulatory Assessments (GTRA) team, the IT SOX/CCAR Assessment Team is responsible for overseeing the execution of SOX and CCAR management assessment testing. The IT SOX/CCAR Assessment Team acts as a Subject Matter Expert on assessment design and strategy for IT general controls and automated business controls assessments for SOX and CCAR management assessment compliance. The ideal candidate will have solid experience in technology risk & controls, compliance assessment programs such as SOX or CCAR, and a proven track record in working on complex process and technology projects.
This specific role will report to the GTRA Financial Assessments product lead and partner with Global Technology teams and control owners to ensure technology-related risks in IT general controls are assessed appropriately, both internally with a central assessment execution team and externally with external auditors. A successful candidate will drive effective assessment approach and execution across IT general controls while effectively responding to strategic initiatives throughout global technology with innovative assessment approaches.

Key Responsibilities:
  • Oversees IT SOX and CCAR management assessments and other assessment programs for Change Management and Computer Operations domains within firm Standards & Procedures in accordance with methodology
  • Works with Business Technology Leads & control owners on ITGC assessment approach for applications and related infrastructure
  • Provide guidance on and validation of remediation activities as it pertains to SOX and CCAR issues, ensuring appropriate resolution of issues, action plans, breaks and remedies and support the closure verification process
  • Coordinate audit engagement of controls with internal and external auditors
  • Develop and maintain strong business and technology relationships, becoming a trusted partner
  • Communicate risk and other control findings with key stakeholders, develop recommendations and provide accurate metrics and management reports on a timely bas is

Basic Qualifications:
Candidates must have a minimum 5-7 years of technologyrisk and controls experience, risk based consulting, risk assessments, auditand regulatory activities, preferably in the SOX or CCAR regulatory area.
  • Deep knowledge and prior experience in auditing and assessing all domains of Technology Infrastructure
  • Experience with implementation and oversight of technology risk and controls, coordination of activities for audits and assessing an IT control environment
  • Detail oriented self-starter with strong conceptual, analytical, decision making, planning, time management and prioritization skills
  • Ability to communicate oral and written ideas in a clear, concise manner, at all levels of the organization and influence without authority
  • Prior experience in planning, coordination and implementation and the ability to work across teams and functions to execute and deliver
  • A strong sense of ownership, commitment to quality and attention to detail
  • Aptitude to upskill and learn new technologies based on dynamic requirements

Preferred Skills:
  • Working knowledge of GRC technology & controls monitoring concepts in order to interact with technology product owners
  • Experience operating in environments that are heavily governed under compliance, regulatory, or risk reduction controls
  • Knowledge of process-focused methodologies for IT related activities (Change Management, Incident Management, and SDLC)
  • "Big Four" IT audit experience leading planning and execution of SOC and/or SOX audits a plus
  • CISA or CRISC certification