IT Systems Manager

We are seeking a highly skilled IT Systems Manager to lead and enhance our IT infrastructure, operational processes, and compliance controls. The ideal candidate will have experience managing and ensuring adherence to key compliance frameworks, including SOX controls, IT General Controls (ITGC). This role involves collaborating with cross-functional teams to ensure robust IT governance, risk management, and compliance standards are met across our organization, preparing us for rigorous audits and operational success.

Primary Duties

• Development and Implementation of SOX Compliance Controls
• Create, implement, and maintain SOX compliance controls that align with the latest regulatory requirements.
• Ensure thorough documentation and sufficient evidence is prepared for SOX audits, demonstrating the design and operational effectiveness of controls.
• Assessment and Improvement of SOX Processes
• Identify and address gaps in SOX-related processes to strengthen governance and enhance risk mitigation strategies.
• Perform regular evaluations of existing controls to ensure ongoing effectiveness and regulatory alignment.
• Enhancement of IT General Controls (ITGC)
• Ensure the effectiveness of ITGCs to uphold the integrity of IT systems and data, focusing on critical areas such as access control, change management, and operational continuity.
• Integrate ITGCs into the broader enterprise risk management framework to promote unified risk oversight.
• Facilitation of Audits and Management of Risks
• Coordinate with internal and external auditors to facilitate SOX compliance audits, ensuring timely and accurate responses to audit findings.
• Conduct comprehensive risk assessments, collaborating with internal teams to address vulnerabilities and maintain compliance.
• Promotion of Security Culture and Ongoing Improvements
• Lead initiatives to establish and maintain an information security management system (ISMS) that supports SOX and ITGC compliance, including security, availability, process integrity, confidentiality, and privacy controls.
• Foster a culture of security and compliance through targeted training and awareness programs, while ensuring adherence to ISMS standards such as ISO 27001. Prepare detailed reports and executive summaries to communicate audit results and compliance status to leadership.

Minimum Qualifications

• Bachelor’s degree in Information Technology, Computer Science, or related field.
• Minimum 8+ years of experience in IT systems management with a focus on compliance and controls.
• Strong knowledge of SOX, ITGC, SOC2 Type 2 frameworks.
• Proven track record of successfully managing audit processes with regulatory bodies and third-party auditors.
• Excellent communication, analytical, and leadership skills.
• Ability to work in a dynamic, fast-paced environment and manage multiple priorities.

Preferred KSA’s

• Regularly review and enhance control documentation to ensure completeness and alignment with SOX requirements, thereby minimizing compliance risks.
• Proficient Management of IT General Controls (ITGC)
• Focus on ITGC categories such as user access management, change management, and incident response to strengthen IT processes that support financial integrity.
• Implement effective monitoring practices to ensure that ITGCs are operating as intended and that they adequately mitigate risks.
• Understanding of SOC 2 Type 2 Reporting
• Cultivate knowledge of SOC 2 Type 2 reporting principles and the Trust Services Criteria to ensure that the organization adheres to pertinent standards for system controls and security.
• Facilitate assessments that evaluate the effectiveness of controls over time, ensuring compliance and stakeholder confidence.
• Mapping Controls to Ensure Audit Readiness
• Develop proven methodologies for mapping controls and frameworks to maintain audit readiness and ensure continuous compliance with regulatory standards.
• Create and maintain detailed documentation of controls and processes to support auditors and streamline the audit process.
• Collaboration on Audit Engagements and Risk Management
• Actively engage with internal and external auditors to facilitate SOX compliance audits, providing timely and accurate responses to audit queries and findings.
• Conduct risk assessments regularly to identify operational vulnerabilities and compliance gaps, collaborating with cross-functional teams to implement corrective actions.

Physical Requirements

• Sitting for prolonged periods of time. Extensive use of computers and keyboard. Occasional walking and lifting may be required.
• Availability for on-call duties 24x7 as necessary.