Massachusetts Information Technology Jobs

Search for Jobs in Information Technology
MassHire JobQuest Logo

Job Information

Randstad IT SOX Compliance Manager in Waltham, Massachusetts

IT SOX Compliance Manager

job details:

  • location:Waltham, MA

  • salary:$81 - $91 per hour

  • date posted:Tuesday, June 11, 2019

  • job type:Contract

  • industry:Manufacturing

  • reference:692937

job description

IT SOX Compliance Manager

job summary:

Description:

  • Perform process and control assessments for new acquisitions and divisions, entities and locations new to the audit scope for potential IT general controls, application controls and process improvements. Assist in the definition of remediation plans, activities and retesting for potential issues and process improvement opportunities.

  • Perform assessments of in-scope systems, processes and controls to verify that controls are designed appropriately and operating effectively. Assist in the definition of remediation plans, activities and retesting.

  • Facilitate IT management's documentation updates and management assessments of all in-scope Client IT processes based on SOX and audit requirements via meetings with the Client IT Regulatory function and IT management.

  • Participate in preparing periodic SOX 404 reporting to the FMC-KGaA SOX 404 Steering Committee.

  • Perform the annual SOX 404 scoping exercise to determine if there are any changes to IT data centers, applications or related processes which should be considered to determine what is in scope for SOX 404 purposes.

  • Provide regular updates to the department management (VP and Senior Manager) regarding the status of the SOX testing plans, the issues identified, and solutions to address the identified issues or deficiencies.

  • With the IT SOX Compliance Senior Manager, serve as the principal interface with the external IT Audit function and the Client IT function regarding SOX IT audit related matters.

  • In conjunction with the Client IT Regulatory Compliance function and the IT external auditor, analyze the SOX testing results and work with management to identify, document and test remediation plans for identified deficiencies.

  • Responsible for access certifications of financially significant systems, including segregation of duties testing.

  • Maintain current knowledge regarding changes to FSA and SOX compliance regulations and ensure that Client adjusts methodologies in response to the changes by issuing guidance and instructions to the appropriate IT stakeholders and personnel. Determine and recommend changes to current controls to address requirement change or issues.

  • Play significant role in the implementation of major projects and initiatives related to auditing automation software and applications to manage governance tasks and SOX financial reporting functions, including the implementation of the SAP GRC platform.

  • Monitor the SAP provisioning software to ensure that requests with potential risk/violations are appropriately addressed, mitigated or compensated.

  • Other duties as assigned.

Additional responsibilities may include focus on one or more departments or locations. See applicable addendum for department or location specific functions.

PHYSICAL DEMANDS AND WORKING CONDITIONS:

  • The physical demands and work environment characteristics described here are representative of those an employee encounters while performing the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

  • This position will work out of the corporate headquarters in Waltham, MA with on-site meetings also at our IT facility in Lexington, MA. May require 10-20% travel.

SUPERVISION:

  • Reporting to IT SOX Compliance Senior Manager

  • Supervise SOX Compliance Staff with Senior Manager

location: Waltham, Massachusetts

job type: Contract

salary: $81 - 91 per hour

work hours: 9am to 5pm

education: Bachelors

responsibilities:

PRINCIPAL DUTIES AND RESPONSIBILITIES:

  • Perform process and control assessments for new acquisitions and divisions, entities and locations new to the audit scope for potential IT general controls, application controls and process improvements. Assist in the definition of remediation plans, activities and retesting for potential issues and process improvement opportunities.

  • Perform assessments of in-scope systems, processes and controls to verify that controls are designed appropriately and operating effectively. Assist in the definition of remediation plans, activities and retesting.

  • Facilitate IT management's documentation updates and management assessments of all in-scope Client IT processes based on SOX and audit requirements via meetings with the Client IT Regulatory function and IT management.

  • Participate in preparing periodic SOX 404 reporting to the FMC-KGaA SOX 404 Steering Committee.

  • Perform the annual SOX 404 scoping exercise to determine if there are any changes to IT data centers, applications or related processes which should be considered to determine what is in scope for SOX 404 purposes.

  • Provide regular updates to the department management (VP and Senior Manager) regarding the status of the SOX testing plans, the issues identified, and solutions to address the identified issues or deficiencies.

  • With the IT SOX Compliance Senior Manager, serve as the principal interface with the external IT Audit function and the Client IT function regarding SOX IT audit related matters.

  • In conjunction with the Client IT Regulatory Compliance function and the IT external auditor, analyze the SOX testing results and work with management to identify, document and test remediation plans for identified deficiencies.

  • Responsible for access certifications of financially significant systems, including segregation of duties testing.

  • Maintain current knowledge regarding changes to FSA and SOX compliance regulations and ensure that Client adjusts methodologies in response to the changes by issuing guidance and instructions to the appropriate IT stakeholders and personnel. Determine and recommend changes to current controls to address requirement change or issues.

  • Play significant role in the implementation of major projects and initiatives related to auditing automation software and applications to manage governance tasks and SOX financial reporting functions, including the implementation of the SAP GRC platform.

  • Monitor the SAP provisioning software to ensure that requests with potential risk/violations are appropriately addressed, mitigated or compensated.

  • Other duties as assigned.

Additional responsibilities may include focus on one or more departments or locations. See applicable addendum for department or location specific functions.

qualifications:

EDUCATION:

  • Bachelor's degree in information systems, computer science, business administration.

  • Certified Information Systems Auditor or Manager (CISA or CISM) certification preferred.

skills: EXPERIENCE AND REQUIRED SKILLS:

  • 8 - 12 years' related experience in an IT audit firm; or a Master's degree with 6 years' experience; or a PhD with 3 years' experience; or equivalent directly related work experience.

  • Experience working with or for external audit firm, Big Four IT audit experience preferred

  • Experience auditing IT processes, applications and infrastructure (servers, databases, data centers, firewalls, etc.)

  • Knowledge of COSO and CoBit control models preferred

  • Experience with GRC systems, preferably SAP GRC

  • Experience with ERP systems, preferably SAP and PeopleSoft

  • Experience with healthcare systems preferably Siemens/Soarian

  • Strong interpersonal skills and ability to work with senior level management in an independent manner

  • Strong analytical and problem solving skills

  • Strong organizational/communication skills

Equal Opportunity Employer: Race, Color, Religion, Sex, Sexual Orientation, Gender Identity, National Origin, Age, Genetic Information, Disability, Protected Veteran Status, or any other legally protected group status.

DirectEmployers