IT SOX Analyst

Job Summary: The IT SOX Analyst will assist in planning, implementing, and managing SOX compliance activities within the IT department. This role involves supporting the adherence to IT General Controls (ITGC), assisting in cybersecurity initiatives, aiding in risk assessments, and ensuring documentation and reporting align with SOX compliance standards.

Application Process: Interested candidates should submit their resume along with a cover letter detailing their experience and interest in IT compliance.

Key Responsibilities

• Support Compliance Efforts: Assist in the oversight and management of SOX compliance within the IT department. Help in reviewing and updating IT policies to align with SOX requirements.
• Risk Assessment Assistance: Support IT risk assessment processes, identifying potential compliance risks.
• Audit Preparation: Assist in preparing for and supporting internal and external IT audits.
• Documentation and Reporting: Help maintain documentation and evidence for SOX controls. Support the creation of compliance reports.
• Change Management Support: Assist in the monitoring of IT changes impacting critical systems, ensuring compliance with the IT Significant Change Management Policy.
• Cybersecurity Support: Aid in the implementation of cybersecurity policies and management of data breach incidents.
• Training Support: Participate in conducting training sessions on SOX compliance and related IT areas.
• Vendor Management Assistance: Support the monitoring of third-party SaaS providers and IT service providers for compliance.
• User Access Review: Assist in managing and reviewing corporate application user security access.
• Equipment Lifecycle Management Support: Aid in overseeing the lifecycle of IT equipment, ensuring it aligns with ITGC and data security standards.
• Additional duties as required

Qualifications

• Bachelor’s degree in Information Technology, Computer Science, or related field.
• Experience or strong interest in IT compliance, audit, or similar role.
• Knowledge of SOX compliance, ITGCs, and risk management principles.
• Familiarity with basic cybersecurity practices and data protection laws.
• Good communication and analytical skills.
• Working towards or interest in CISA (Certified Information Systems Auditor) or similar certification.
• Office-based role with opportunities for skill development and career progression.
• Standard working hours with occasional extended hours during critical project phases or audit periods.
• Some travel required.