ITGC SOX Compliance Lead
| Company | 3M |
|---|---|
| Location | Austin, TX, USA, Woodbury, MN, USA |
| Salary | $164612 – $201193 |
| Type | Full-Time |
| Degrees | Bachelor’s |
| Experience Level | Senior |
Requirements
- Bachelor’s degree or higher in Information Technology, Computer Science, Accounting, or Business Administration (completed and verified prior to start)
- Minimum of Seven (7) years of experience in IT audit, IT compliance, or SOX compliance in a private, public, government, or military environment.
Responsibilities
- Collaborate on the development and management of the SOX ITGC compliance program.
- Conduct controls rationalization for IT assets to identify areas of non-compliance.
- Contribute to the design of SOX IT controls and application controls.
- Consult control owners on the documentation of SOX IT controls related to systems and processes.
- Support control owners in ensuring control deficiencies have been remediated.
- Contribute to the development and maintenance of IT policies, procedures, and control matrices to support SOX compliance.
- Consult and train IT and business control owners on SOX IT control requirements and best practices.
- Monitor the progress of SOX IT control execution and testing results.
- Assist in tracking the status of SOX IT compliance efforts and identified control deficiencies.
- Support tracking of the remediation efforts for control deficiencies and ensure timely resolution.
- Consult with the control owners to support the implementation of effective SOX IT controls across relevant IT assets.
- Coordinate with internal audit and external auditors to facilitate SOX IT testing.
- Act as a liaison between IT, business, and external auditors to ensure clear communication and effective audit coordination.
- Collaborate with control owners to enhance SOX IT control and processes while ensuring risks are mitigated.
Preferred Qualifications
- Possess a professional certification (e.g. CISA, CISSP, CRISC) preferred.
- In-depth knowledge and experience in SOX programs and application of ITGC and IT application controls.
- Experience using a GRC tool, such as Archer or Workiva preferred.
- Excellent analytical, problem-solving, and project management skills.
- Strong communication and interpersonal skills, with the ability to work effectively with technical and non-technical stakeholders.
- Proficiency in IT auditing tools and technologies used for control monitoring and assessment.
- Ability to navigate ambiguity and develop trusted business relationships.
- Ability to identify problems, analyze data and present conclusions.
- Ability to lead across the organization to influence desired outcomes.
- Strong understanding of ITGC frameworks and best practices (e.g., COSO, COBIT, ITIL).