Posted in

IT SOX Compliance Specialist

IT SOX Compliance Specialist

CompanyCoupang
LocationMountain View, CA, USA
Salary$142000 – $309000
TypeFull-Time
DegreesBachelor’s, MBA
Experience LevelExpert or higher

Requirements

  • Bachelor’s degree in computer sciences, mathematics, management/computer information systems, accounting, or related fields. MBA or relevant graduate degree preferred – can be replaced by experience
  • Bilingual in Korean and English
  • Around 10 years of related work experience in information technology SOX compliance, IT risk management, or related fields
  • Strong knowledge of Sarbanes-Oxley Section 404 (SOX) and IT General Controls
  • Professional auditing, security, or technology designation (e.g., CIA, CISA, CISSP, CISRM, etc.)
  • Knowledge of IT / Information Security risks and controls principles
  • Foundation in analyzing, problem determination, and resolving complex IT problems
  • Experienced with controls, or risk management with both enterprise applications and developed software
  • Strong familiarity with AWS services and containerized distributed systems
  • Strong familiarity with relational, object-oriented and messaging queue infrastructure

Responsibilities

  • Assist in the design, implementation and ongoing monitoring of IT general controls across Coupang Engineering and Corporate IT systems and its subsidiaries
  • Assist in driving IT control deficiency remediation efforts, including conducting root cause analysis, impact analysis, identify mitigating controls, creating remediation plans and hands-on coordination with IT process owners
  • Perform quarterly IT deficiency evaluations in coordination with Finance
  • Assist in the documentation and management of ITGC narratives, Risk and Controls Matrix, and the inventory of SOX in-scope IT systems
  • Ensure all ITGC Documentation, findings and audit requests are stored, collaborated on and accessible on the Company’s centralized SOX program management tool (Workiva)
  • Develop a deep understanding of the company’s platform infrastructure and processes
  • Maintain an awareness of new and emerging IT risks, regulations and trends that impact technology controls
  • Liase between Engineering & Corp IT for internal and external IT control audits
  • Assist in the communication status of IT control activities, verbally and in writing
  • In partnership with Finance, Security, Engineering, and Corp IT teams, manage and remediate SOD conflicts identified in relevant financial reporting systems
  • Maintain an inventory of SOX in-scope 3rd party service organizations, obtain, and evaluate SOC reports based on a defined frequency

Preferred Qualifications

  • Excellent written and oral communication
  • Ruthless Prioritization: self-directed and accountable with the ability to manage competing tasks within specified deadlines
  • Move with Urgency: proven track record driving tangible results on short deadlines
  • Comfortable with cross-team collaboration and communication
  • Ability to be collaborative and to encourage collaboration
  • Ability to positively influence others