Compliance Analyst (SOX)
Carpinteria, CA, United States
We are seeking a strong SOX Compliance Analyst to manage a 6-month project for our client in their new GRC platform including updating control information, tracking project status, and reporting on timelines and milestones.
This position will report to the Sr. Manager of Compliance.
Responsibilities:
Obtain and review evidence for SOX IT general controls, ensuring audit conclusions are well documented and based on a complete understanding of the processes and risks
Evaluate, document, and communicate business risk in the context of SOX control designs and gaps
Monitor compliance-led initiatives against KPIs, managing project risks, stakeholders, and excellent project delivery
Work as a subject matter expert on the process to interpret SOX compliance regulations
Work with external auditors on regulatory and compliance program audits and assessments
Seek out opportunities to improve verification of controls compliance, such as through automation of tests.
Requirements: Strong familiarity with risk management methodologies and common security controls frameworks, such as SOX, ISO 27001, SOC I & II, NIST, etc. with an emphasis on SOX processes and controls
Experience in GRC software and the ability to track compliance projects within
Strong understanding of evaluating the design and effectiveness of SOX IT general controls and experience working with auditors/regulators for these types of assessments
Bachelor's degree in Engineering, Information Systems, Business, Accounting or related disciplines; 2+ years of experience at a Big 4 consulting firms preferred or similar.
4+ years as a technical compliance specialist, preferably at a late-stage tech startup/newly-public company; along with 5+ years of experience as a technical manager preferred.
Relevant professional certifications, such as CISA, CISM, CISSP, ISO 27001 Auditor
Self-sufficient and self-motivated; capable of working with ambiguity in a dynamic environment
Outstanding written and verbal communication skills - will need to document policies and procedures, and articulate them well across all levels.
Strong collaboration and negotiation skills and demonstrated ability to manage multiple projects and priorities
#J-18808-Ljbffr