Lead, IT SOX- REMOTE
Areas of Interest
Dallas - Texas - United States of America, Remote - US - Remote - US - United States of America
Reporting to the Manager, IT SOX, the Lead, IT SOX will oversee and ensure the delivery of timely, high quality, and value-add project results in accordance with professional standards. The Lead, IT SOX will also focus on the development of staff, timely and accurate reporting, and the fostering of relationships with business partners. The Lead, IT SOX is responsible for their assigned areas and projects as well as assisting the Manager with executive communications and developing internal policies and trainings.
Responsibilities include but are not limited to:
?Leads walk-throughs efficiently and independently while building rapport with control owners
?Performs consistent and high-quality audit testing for complex systems/environments
?Performs comprehensive deficiency analysis including magnitude, impact, compensating controls, and likelihood of misstatement
?Creates and manages wholistic status reporting documents for upper management
?Develops and delivers training to GSA group on new industry trends, SOX requirements, etc.
?Serves as the responsible party when a manager is otherwise unavailable
?Solves problems as the first line of defense for the Seniors and Associates to efficiently navigate roadblocks
?Possesses advanced understanding of all LOB’s and segments included in the SOX scope
?Assists with other projects and duties, as assigned
?Able to critically analyze and communicate risks associated with findings
?Able to make connections between business process controls and IT controls around how a risk is addressed
Specific experience and qualifications will include, but not be limited to the following:
5+ years demonstrated knowledge, skills, and expertise in the specialized field of IT auditing including, but not limited to, IT governance, IT general controls, IT project management, IT infrastructure management, software development lifecycle, application security, emerging information security and cybersecurity risk, process automation, cloud architecture and controls related to applications hosted in the cloud, data lifecycle management, data privacy, disaster recovery and business resumption, and other technology risks, and as well as IT infrastructure including databases, networks, and operating systems.
Comprehensive knowledge of auditing concepts, approaches, tools, and techniques; risks and controls; IT and Security concepts, standards, frameworks, and best practices.
Demonstrated knowledge of internal controls frameworks (i.e., SOX, COSO, COBIT, NIST CSF, ITIL, etc.), applicable regulatory requirements and identification of emerging IT and IS related risks (i.e., Cloud Computing, Data Analytics, etc.).
Strong verbal and written communication skills with a demonstrated ability to articulate effectively and professionally.
Must be a team player. Ability to multitask, prioritize, and dive into the details where appropriate.
Knowledge of leading internal control and risk management practices and standards and the ability to perform detailed risk assessments.
Possess professional expertise as well as strong analytical and technical skills to evaluate highly complex and diverse IT systems while maintaining the ability to understand and relate to the risks to the organization's overall enterprise risk profile.
In practicing data analysis, experience using computer-assisted audit techniques, a plus.
Strong proficiency in the Microsoft Office Suite of products (especially Word, Excel, PowerPoint).
High ethical standards with ability to handle confidential / sensitive issues and information with the highest degree of professional responsibility.
Experience leading audit related activities for new/upgraded system implementations (e.g., testing and defect management strategies, data conversion, transition of systems or processes)
Experience navigating and leading in environments of transformation, change and disruption.
Experience facilitating training and awareness relating to SOX initiatives and compliance on a global basis.
EDUCATION / CERTIFICATIONS
Bachelor’s degree in Accounting, Business Administration/Management, Computer Science, Finance, Information Technology, or Management Information Systems.
A minimum of one of the following (or an equivalent) Professional certification is required: Certified Internal Auditor (CIA), Certified information System Auditor (CISA), Certified Public Accountant (CPA), Certified Information Systems Security Professional (CISSP), Global Information Assurance Certification (GIAC).
**Colorado Residents: CBRE carefully considers multiple factors to determine compensation, including a candidate’s education, training, and experience. The minimum salary for the Lead, IT SOX position is $125,000 annually and the maximum salary for the Lead, IT SOX position is $130,000 annually. The compensation that is offered to a successful candidate will depend on the candidate’s skills, qualifications, and experience. Successful candidates will also be eligible for a discretionary bonus based on CBRE’s applicable benefit program.
CBRE is an equal opportunity/affirmative action employer with a long-standing commitment to providing equal employment opportunity to all qualified applicants regardless of race, color, religion, national origin, sex, sexual orientation, gender identity, pregnancy, age, citizenship, marital status, disability, veteran status, political belief, or any other basis protected by applicable law.
NOTE: An additional requirement for this role is the ability to comply with COVID-19 health and safety protocols, including COVID-19 vaccination proof and/or rigorous testing.
CBRE, Inc. is an Equal Opportunity and Affirmative Action Employer (Women/Minorities/Persons with Disabilities/US Veterans)