Skip to content
Sox Itgc – Uar – Manager
| Company | Peloton |
|---|
| Location | New York, NY, USA |
|---|
| Salary | $139905 – $188871 |
|---|
| Type | Full-Time |
|---|
| Degrees | Bachelor’s |
|---|
| Experience Level | Senior |
|---|
Requirements
- Bachelor’s degree in Computer Science, Information Technology, Accounting, or a related experience.
- Minimum of 8 years of experience in IT compliance, risk management, or audit, with a focus on SOX.
- Proficient in ITGC frameworks, SOX requirements, and UAR controls.
- Experience with UAR identity governance tools (Sailpoint, CyberArk)
- Familiarity with relevant regulations (e.g., GDPR, HIPAA) and industry standards (e.g., ISO 27001).
- Excellent analytical, problem-solving, and organizational skills.
- Strong communication skills, both verbal and written, with the ability to present complex information clearly.
Responsibilities
- Oversee and manage SOX compliance activities related to IT General Controls (ITGC), ensuring timely execution of UAR and other related controls.
- Design, implement, and monitor UAR processes to ensure that user access is appropriate and complies with organizational policies and regulatory requirements.
- Develop and maintain an identity governance framework to manage user identities, roles, and access rights across systems, ensuring least privilege access principles are adhered to.
- Conduct regular risk assessments related to ITGC and identity management. Identify potential risks and recommend mitigation strategies to senior management.
- Create and maintain comprehensive documentation for all SOX controls, including policies, procedures, and process flows. Prepare and present regular compliance reports to management and auditors.
- Work closely with IT teams, internal audit, and external auditors to facilitate audits and ensure compliance with SOX requirements.
- Serve as the primary point of contact for external auditors regarding ITGC and UAR controls, ensuring that all necessary documentation and information are provided in a timely manner.
- Develop training programs for staff on SOX compliance, UAR controls, and best practices in identity governance to foster a culture of compliance within the organization.
- Identify opportunities for process improvements in compliance practices and implement best practices in identity governance.
Preferred Qualifications
- Relevant certifications (e.g., CISA, CISSP, CRISC) are a plus
