IT SOX Program Manager - #21256

Executive Search in Information Technology

The IT SOX Program Manager is responsible for the end-to-end management of the IT SOX compliance program, with a strong emphasis on program governance, project management, execution oversight, and stakeholder communication. This role will lead planning and coordination efforts across IT, Finance, Internal Audit, and external audit teams to ensure the effective implementation and operation of IT General Controls (ITGC) and application controls that support financial reporting. The ideal candidate has proven experience in managing global compliance initiatives across diverse business and IT environments.

What You’ll Do

• Develop and manage the global IT SOX program plan and annual compliance calendar.
• Coordinate cross-functional teams to ensure timely execution of control walkthroughs, testing, and evidence collection.
• Lead scoping activities and risk assessments to define in-scope systems, applications, and processes.
• Oversee program performance metrics and quality assurance reviews of control testing and documentation.
• Maintain and track remediation efforts, including root cause analysis and re-testing cycles.
• Serve as the primary point of contact for internal and external auditors for IT SOX-related matters.
• Prepare dashboards, reports, and executive briefings on program status and risk posture.
• Administer and optimize GRC platforms and ensure consistency in control documentation and testing workflows.
• Conduct training sessions and provide guidance to IT control owners on SOX compliance expectations and deliverables.

Required Qualifications

• Bachelor’s degree in Information Systems, Accounting, Business, or related field.
• 10+ years of experience in IT compliance, audit, or SOX program management in a public company environment.
• Strong project and program management skills with a track record of delivering compliance initiatives on time and within scope.
• Deep understanding of IT General Controls (ITGCs), SOX 404 requirements, and control testing methodologies.
• Familiarity with GRC tools such as AuditBoard, SAP GRC, or equivalent platforms.
• Excellent communication, stakeholder management, and executive reporting skills.
• Ability to work across global time zones and lead initiatives in both U.S. and European regions.

Preferred Qualifications

• CISA, PMP, or equivalent professional certification.
• Experience in large enterprise environments with complex IT landscapes.
• Knowledge of frameworks such as NIST.