The Virtus Solution is a boutique Management Consulting firm looking for talented and ambitious resources who want to excel in a fast-paced and collaborative environment. The IT SOX Audit Strategist is a key role in The Virtus Solution’s growing practice. The ideal candidate will...
- Develop sustainable IT General Controls and SOX governance and implementation roll out for 80+ current applications with the framework to onboard and sunset applications as necessary
- Demonstrate and apply knowledge to audit logical security, change control, and operational controls to address the risks in IT environment
- Establish policies, roles, and responsibilities across to support operational and delivery objectives
- Define audit assessment tool interpreted from SOX controls to evaluate which applications require which evidence & artifacts
- Defend compliance position via internal review cycles prior to annual audit
- Build out remediation plans and mitigation strategies for findings
- Create continuous monitoring plan to assess new and emerging risks or additional controls
- Identify standard operating procedures for automation enhancements to reduce overall manual evidence gathering
- Demonstrate and apply advanced understanding of complex information systems and their compliance standards (IE. SOX)
- Identify internal controls issues within our clients’ IT environment and develop gap analyses
- Review audit evidence and work products to ensure technical accuracy, deliverable quality, and overall compliance for audit controls
- Develop and maintain active communication plan with stakeholders (IE. Internal Audit, Risk Management Team, Application Owners) in order to align to strategic plan, manage expectations, and ensure satisfaction
- Maintains familiarity with corporate and federal concepts (IE. SOX, NIST 800-53 and other NIST guidance, OMB A-123, FISCAM, and FIAR concepts)
- Research and interpret new IT control pronouncements and identify opportunities to improve client internal controls
- Understand how IT general controls (ITGC), application controls, and technology risks affect the control environment
Experience:
- 10+ Years IT industry, preferably in a financial services or consulting organization, focus on SOX and/or IT Risk Audit
- Knowledge and experience related to IT audits and Information Technology operations (experience with ERP software platforms is a plus)
- Prior experience working in or auditing financial institutions
- Experience conducting internal network scans is a plus
- Privacy and security experience a plus
- CPA and/or CISA certification
- Lead or assist in the execution of annual SOX IT General Control (ITGC) testing, including the evaluation of control design and testing of the operational effectiveness
- Must have experience working with multiple teams and stakeholders to perform SOX audit related activities in a timely manner
- Work with clients to test for compliance with various prevailing regulatory laws, requirements, and standards including but not limited to Sarbanes-Oxley Act of 2002, PCI DSS, GDPR, ISO 27001, HIPAA, DFARS
- List any licenses or certifications required by the position: CISA, CPA, CIA, CRISC, CISM, CIPP, PMP, CEO/CFO, SOC, CISSP
- Bachelor's and Master's Degree in Accounting, Finance, Information Technology, Business/Management, Management Information Systems, Computer Information Systems, Computer Science, Information Systems, Business/Administration, Business
Additional Information:
- Preferred Location: Atlanta, GA
- Candidates must be eligible to work in the U.S. for any employer directly. All positions include the possibility of travel.
- The Virtus Solution is an equal opportunity employer committed to fostering a culture of equality, inclusion, and fairness — each foundational to our core values. We strive to create a diverse environment where each employee is encouraged to bring their unique ideas, background and experience to the workplace.