Senior Manager, IT Controls

Job Description

The Senior Manager, IT Controls reports to the Chief Accounting Officer and will operate and manage a Sarbanes-Oxley (SOX) IT Controls program where revenue transactions and key reporting come from custom developed systems deployed to Amazon Web Services. You'll work with our accounting, engineering, product, and securities teams to ensure our control owners have complete and accurate review populations and validate control execution. You'll direct our IT controls monitoring team and provide input on our internal control monitoring and execution tools. As our business or technologies change, you'll collaborate with engineering, IT, finance, HR, and product teams on necessary updates to our SOX IT Controls.

This role is hybrid and requires being in our Cambridge office several days a week.

Who you are:

• CPA (Certified Public Accountant) or CISA (Certified Information Systems Auditor) required; CISSP (Certified Information Systems Security Professional) and/or CISM (Certified Information Security Manager) preferred.
• 7+ years of experience in public company (internal and/or external auditing), with emphasis on IT experience with complex custom-developed platforms in public cloud environments and/or Big 4 accounting firms, including 4+ years of Big 4 experience.
• 5+ years experience in leadership roles involving team development and management.
• Expert understanding of general computer control areas and IT governance frameworks (e.g., Sarbanes-Oxley, COSO, COBIT, NIST CSF, ISO 27001).
• Working knowledge of US Generally Accepted Accounting Practices.
• Experience designing and implementing internal controls, supporting large-scale SOX programs within management-led organizations.
• Proven experience evaluating security and controls on hosted and SaaS/cloud-based technologies.
• Strong understanding of SDLC including agile and CI/CD processes.
• Functional knowledge of Git workflows including commits, pull requests, approvals, and merges.
• Ability to negotiate, influence, and collaborate effectively with multi-functional and remote teams.
• Experience developing and executing strategic people plans to ensure optimal team placement and high employee engagement.
• Excellent communication skills, capable of explaining technical concepts to business leaders and business concepts to security teams.

Additional Experience:

• Understanding of AWS Well-Architected Framework components such as IAM, CloudTrail, CloudWatch, EKS.
• Experience with Okta or similar SaaS providers.
• Familiarity with Atlassian Jira.
• Experience working with Scaled Agile Framework (SAFe).
• Proficiency with VLOOKUP and functions in Google Sheets and Excel.
• Basic automation skills, including simple API queries using Python.
• Basic SQL knowledge.

About us:

EverQuote (Nasdaq: EVER) operates a leading online marketplace for insurance shopping, connecting consumers with insurance providers. Our vision is to be the leading growth partner for P&C insurance providers. Our results-driven marketplace, powered by proprietary data and technology, is transforming how insurance providers attract and connect with consumers.