SOX 404

Job Description

Roles & Responsibilities: SOX 404 ITGC We are seeking an experienced SOX 404 ITGC Tester to join our IT compliance and internal audit team. This role focuses on evaluating, documenting, and testing IT general controls to ensure they meet Sarbanes-Oxley (SOX) 404 compliance standards. The ideal candidate will possess a strong technical understanding of IT systems, processes, and control frameworks, along with a keen eye for detail. This position will work cross-functionally with both IT and business teams to support the organization’s compliance efforts. Key Responsibilities: ITGC Testing and Evaluation: • Conduct detailed testing of IT general controls (ITGCs) across areas such as access controls, change management, IT operations, and system development. • Evaluate and document the design and operating effectiveness of IT controls supporting financial systems. Control Documentation and Assessment: • Prepare and maintain control documentation, including process narratives, control matrices, and test scripts. • Identify, assess, and document deficiencies, working with stakeholders to ensure timely remediation. Collaboration with Cross-Functional Teams: • Partner with IT, business process owners, and external auditors to facilitate SOX ITGC testing. • Provide guidance on best practices in IT control implementation and assist in remediation efforts. Reporting and Communication: • Prepare reports on testing results, including any identified control deficiencies, recommendations, and timelines for remediation. • Present findings to IT and business management and assist in developing action plans. Continuous Improvement: • Identify opportunities to improve ITGCs and SOX testing processes. • Stay up-to-date with SOX compliance standards and ITGC best practices to ensure ongoing compliance. Skills: • Strong understanding of SOX 404 requirements and IT general controls (ITGCs). • Knowledge of IT infrastructure components, including databases, networks, and operating systems. • Proficiency in Microsoft Office Suite and experience with SOX or audit software tools. • Analytical skills and attention to detail in testing and documenting controls. • Experience: 2+ years of experience in IT audit, SOX ITGC testing, or IT compliance. • Certification: CISA, CISSP, CRISC, or related certifications are highly preferred