SOX IT Audit Lead
Comerica Bank
SOX IT Audit Lead
The Enterprise Reporting Controls & Governance Group is responsible for Comerica's compliance with the provisions of Section 404 of The Sarbanes-Oxley Act of 2002 ("SOX"), and ultimately, providing certification that our internal control environment is operating effectively. The group reports administratively to the Chief Accounting Officer and works closely with key stakeholders across business units, corporate functions, technology, and the second and third lines of defense.
The SOX IT Audit Lead is responsible for comprehensive reviews of IT processes and ensure appropriate controls and procedures are in place and operating effectively.
Position Responsibilities: Perform/actively participate in the walkthrough of significant IT processes/applications and ensure SOX documentation is accurate and reflects relevant risk, key controls, and current process. Identify key risks and controls, controls optimization, including the configuration of controls within business processes and the IT environment. Review SOX documentation (risk control matrices, narratives, flowcharts) and identify areas where control enhancements and/or documentation improvements are needed. Review and/or perform SOX testing for key general IT controls (ITGCs), IT application controls (ITACs), critical interfaces, and key reports/spreadsheet in-scope for SOX. Manage team of control testers (internal and outsourced) ensuring quality documentation and testing standards. Assess deficiencies identified and work with process owners to identify an appropriate solution. Follow-up on remediation activities to verify appropriate resolution. Review SOC 1 report evaluations to ensure exceptions are appropriately addressed and that appropriate complementary controls are in place and operating effectively. Partner with business process and application owners on system conversions or implementation to provide future state controls design, and pre-go-live validation. Extract and validate sampling populations from various SOX applications for SOX Financial Controls team testing. Position Qualifications: Bachelor's Degree OR 4 years of relevant experience 4 years of experience in public accounting, large company IT audit, or IT advisory/consulting Experience with SQL and/or Power BI and Microsoft Access Databases Proficiency Microsoft Office, including Access, VISIO, Projects Ability to prioritize work, meet deadlines, achieve goals, and work under pressure in a dynamic and complex environment. Strong verbal and written communication, project management, and analytical skills Solid IT background preferred (Windows, UNIX, SQL server/Oracle databases, Workday, etc.) Knowledge of IT risk assessments, internal control principals, and audit standards/methods Licenses/Certificates: Preferred, CIA certification (Certified Internal Auditor) Required, CISA (Certified Information Systems Auditor) professional certification holders 17 Cowboys Way8:00am - 5:00pm Monday - Friday
Position Responsibilities: Perform/actively participate in the walkthrough of significant IT processes/applications and ensure SOX documentation is accurate and reflects relevant risk, key controls, and current process. Identify key risks and controls, controls optimization, including the configuration of controls within business processes and the IT environment. Review SOX documentation (risk control matrices, narratives, flowcharts) and identify areas where control enhancements and/or documentation improvements are needed. Review and/or perform SOX testing for key general IT controls (ITGCs), IT application controls (ITACs), critical interfaces, and key reports/spreadsheet in-scope for SOX. Manage team of control testers (internal and outsourced) ensuring quality documentation and testing standards. Assess deficiencies identified and work with process owners to identify an appropriate solution. Follow-up on remediation activities to verify appropriate resolution. Review SOC 1 report evaluations to ensure exceptions are appropriately addressed and that appropriate complementary controls are in place and operating effectively. Partner with business process and application owners on system conversions or implementation to provide future state controls design, and pre-go-live validation. Extract and validate sampling populations from various SOX applications for SOX Financial Controls team testing. Position Qualifications: Bachelor's Degree OR 4 years of relevant experience 4 years of experience in public accounting, large company IT audit, or IT advisory/consulting Experience with SQL and/or Power BI and Microsoft Access Databases Proficiency Microsoft Office, including Access, VISIO, Projects Ability to prioritize work, meet deadlines, achieve goals, and work under pressure in a dynamic and complex environment. Strong verbal and written communication, project management, and analytical skills Solid IT background preferred (Windows, UNIX, SQL server/Oracle databases, Workday, etc.) Knowledge of IT risk assessments, internal control principals, and audit standards/methods Licenses/Certificates: Preferred, CIA certification (Certified Internal Auditor) Required, CISA (Certified Information Systems Auditor) professional certification holders 17 Cowboys Way8:00am - 5:00pm Monday - Friday
Confirm your E-mail: Send Email
All Jobs from Comerica Bank