Hands-on leader and SOX Compliance subject matter expert who works with IT, accounting, and cross-functional process owners to help achieve ongoing design, review, testing, and remediation of the IT systems controls for Sarbanes-Oxley compliance.
Provide strategic thinking, thought leadership, and guidance on identifying gaps in IT controls and designing a proactive risk assessment.
Plan and manage direct activities of the team to align governance programs with the organization’s objectives and execute roadmaps.
Provide guidance, assessment, and oversight on the governance of Change Management and System Access Controls and provide recommendations on the next level of maturity strategy/roadmap and standards.
Work on the completion of comprehensive risk assessment, documentation, risk mitigation guidance, and related reporting for key enterprise initiatives, across various technologies, platforms, and environments including those relative to business technology integrations.
Risk assessment, management, and reporting of emerging technologies such as artificial intelligence, machine learning, cloud computing, and automation solutions.
Analysis of internal controls adequacy and guidance on the creation of new controls based on identified control gaps.
Implement a Risk and Controls Matrix pursuant to business objectives, regulatory environments, NIST, SOC, COBIT, ITIL, DCAM, and other industry risk and control frameworks and playbooks.
Proactive research on compliance changes within AGC Automotive America’s industry regs and standards. Analytics to provide insights and recommendations for risk reduction and improvement.
Update and align IT processes, systems, controls, and policies to industry standards and drive remediation efforts for any identified deficiencies.
Act as a change agent, influencer, cross-functional leader, and collaborator to drive and facilitate ongoing SOX and compliance training programs for IT process and control owners.
Maintain and enhance SOX controls documentation so they reflect the current environment and would comply with SOX compliance, including testing documentation and systems diagrams.
Proactively participate and guide the team in planning, prioritization, and delivery of system enhancements using unified methodologies as well as maintain documentation concerning planning, status, testing results, and other reporting needs.
Work with internal audit to conduct risk-based audits to determine soundness, adequacy, and application of IT and controls including identifying control weaknesses, exceptions, and deficiencies in operations.
IT Lead in managing the year-end external audit, including direct interaction with independent auditors on internal control testing.
Maintain a current knowledge base of audit industry practices and ensure best practices are always considered. Perform all assigned audit duties in a manner that reflects the highest professional standards and complies with the guidelines of the Institute of Internal Auditors (IIA) and the Institute of Information Systems Audit and Control Association (ISACA).
Lead IT project management timelines, ensuring they are completed on time, within scope and budget with proper IT audit controls.
Conduct and/or manage special projects and ad hoc requests to support the senior leadership team and other duties as assigned.