Director, SOX IT

Posted:
10/9/2024, 9:49:00 AM

Location(s):
Georgia, United States ⋅ Texas, United States ⋅ Alpharetta, Georgia, United States ⋅ Irving, Texas, United States

Experience Level(s):
Expert or higher ⋅ Senior

Field(s):
IT & Security

McKesson is an impact-driven, Fortune 10 company that touches virtually every aspect of healthcare. We are known for delivering insights, products, and services that make quality care more accessible and affordable. Here, we focus on the health, happiness, and well-being of you and those we serve – we care.

What you do at McKesson matters. We foster a culture where you can grow, make an impact, and are empowered to bring new ideas. Together, we thrive as we shape the future of health for patients, our communities, and our people. If you want to be part of tomorrow’s health today, we want to hear from you.

Current Need:

The Enterprise Financial Controls (EFC) function stewards the governance program to provide assurance on the effectiveness of McKesson’s business processes and information technology (IT) controls over financial reporting which supports the CEO and CFO quarterly certification under Sarbanes-Oxley (SOX) Act of 2002.

As a leader in the EFC team, this role will focus on SOX oversight, IT risk assessment and testing execution, SOC 1 testing, merger and acquisition due diligence reviews and control implementation, and drive continuous improvement throughout the organization. The IT Director will partner with Mckesson Technology Operational Excellence and Governance team, Cybersecurity Officer, Business Unit Chief Information Officers and other key IT stakeholders to ensure we have the most efficient and effective IT controls across the enterprise.

Primary Responsibilities:

  • Provide IT and Business management with guidance on IT risk management matters, particularly on application and infrastructure security.
  • Lead teams in performance of IT testing and reviews of systems, applications and IT processes.
  • Evaluate information general computing controls and provide value added feedback. Test compliance with those controls.
  • Perform various other reviews of IT management policies and procedures such as information security and change management to ensure that controls surrounding these processes are adequate.
  • Lead meetings with senior management or executive levels on matters concerning status of SOX procedures and the issues identified.
  • Develop, build & implement tools to analyze data to improve SOX testing efficiency and effectiveness. Ultimately be a source for analytics that IT or business adopts to provide insights or for continuous testing. 
  • Responsible for developing and maintaining the IT SOX Risk Assessment; including identifying areas of focus for business units to consider additional investment / cost savings.
  • Provide IT controls guidance on pre/post implementation reviews of system implementations or enhancements.
  • Provide support to SOX business process teams and other key SOX business stakeholders.
  • Develop positive and collaborative relationships with process/control owners, leadership, internal audit and external auditors.
  • Provide developmental coaching and mentoring to a team of IT professionals.
  • Support the IT organization with various adhoc projects as required.

Minimum Requirements:

  • Typically has 7+ years of relevant IT audit experience and 3+ years management experience.

Critical Skills:

  • Ability to think objectively and apply strong ethics and integrity standards.
  • Outstanding interpersonal and communications skills; ability to communicate effectively with technical and non-technical audiences.
  • Comprehensive understanding of internal control environments within the IT function.
  • Understanding of information security standards, best practices for securing computer systems, and applicable laws and regulations.
  • Experience with multiple technology domains including aspects of Windows, Unix and/or database administration, software development and networking.
  • Excellent leadership and teamwork skills.
  • Proactive, hands-on, results-driven orientation required.
  • Ability to blend exceptional attention to detail with an ability to retain strategic direction within a rapidly evolving entrepreneurial business culture.
  • Ability to produce high quality work products for both the IT groups and Senior Management.

Additional Skills:

  • Strong knowledge of SOX regulations and requirements, PCAOB Standards, COSO guidelines, and US GAAP, accounting policies and auditing standards.
  • Effectively navigates a matrixed organization and complexities
  • Big 4 public accounting experience with audit or internal control is highly preferred

Education/License:

  • Bachelor’s Degree – Business, Accounting, Computer Science, IT Risk Management/Governance or related field with focus on information systems
  • Recognized accounting/auditing/information system certifications (e.g. CPA, CISA, CIA, CISSP) required

Physical Requirements:

  • General office demands
  • Location – Irving,TX or Alpharetta, GA
  • Travel – 15% (or as job requires)

We are proud to offer a competitive compensation package at McKesson as part of our Total Rewards. This is determined by several factors, including performance, experience and skills, equity, regular job market evaluations, and geographical markets. The pay range shown below is aligned with McKesson's pay philosophy, and pay will always be compliant with any applicable regulations. In addition to base pay, other compensation, such as an annual bonus or long-term incentive opportunities may be offered. For more information regarding benefits at McKesson, please click here.

Our Base Pay Range for this position

$126,000 - $210,000

McKesson is an Equal Opportunity Employer

 

McKesson provides equal employment opportunities to applicants and employees and is committed to a diverse and inclusive environment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, disability, age or genetic information. For additional information on McKesson’s full Equal Employment Opportunity policies, visit our Equal Employment Opportunity page.

 

Join us at McKesson!