Senior IT SOX Compliance Analyst

Summary

The Senior IT SOX Compliance analyst is responsible for working to ensure Amentum IT’s SOX processes and internal control environment are effective and compliant with all applicable laws and regulations. This role will be a key participant in Amentum’s IT SOX compliance program, addressing risks and vulnerabilities that impact the completeness and accuracy of our financial statements, engaging application and control owners on remediation and control adoption, and partnering with leaders across the organization to enhance and drive IT SOX compliance.

This position reports to the Director of IT SOX Compliance and works closely and collaboratively with different functions across the organization.
This is a remote-telework role. US citizenship is required
.

• Provides inputs and support across all phases of the Company s ongoing IT SOX compliance efforts from planning through reporting, in compliance with NIST standards.
• Assists in company-wide and technology/ application-specific risk assessments to evaluate and address any impact the results may have on the control environment.
• Updates and continually validates documentation of the control environment (e.g., process flows, control matrices, system diagrams, role security matrices, etc.), ensuring it is kept current.
• Collaborates with Internal & External audit teams and SOX Compliance teams to evaluate IT system SOX scoping and address the impact of key applications relevant to the Company’s SOX environment.
• Participates in or leads the design and implementation of efficient and effective IT controls across the organization.
• Facilitates the root-cause determination and remediation of any exceptions with IT process/application owners in a timely manner.
• Provides guidance for identifying processes and technology solutions to improve compliance and reduce workload, e.g. via automation.
• Actively builds and manages relationships with Company stakeholders, while promoting the importance of compliance initiatives throughout the organization.
• Supports process owners through training, reviewing, and providing guidance for their processes including, but not limited to, IT General Controls, IT Application Controls, IT Operations, Key Reports, and SOC Reporting.
• Collaborates with internal/ external auditors to facilitate meetings setup, audit requests completed, and ensure evidence is captured by control owners.
• Provide summary results to senior management on progress, current issues, and key takeaways

• Deep understanding of SOX, ITGCs, and financial systems related to financial reporting
• Strong leadership skills with a self-motivated ability to exercise thoughtful and sound judgement and help drive and achieve positive results.
• A team player and process-oriented focus with excellent interpersonal, analytical, and problem-solving skills.
• Strong written and verbal communication skills, including the ability to interact effectively with all areas and levels of the company.
• Must be highly organized, accurate and detail-oriented, with the ability to manage numerous projects /tasks simultaneously and adhere to strict deadlines in a fast-paced environment.
• Must possess high ethical standards (integrity, transparency, and trust).
• Exhibit critical thinking skills and ability to complete tasks with appropriate level of skepticism.
• Demonstrated professional commitment, initiative, accountability and ownership of assignments.
• Ability to proactively manage change and independently prioritize tasks, organize complex workload to accomplish objectives in a timely manner.
• Experience working in a rapidly evolving work environment.

• Bachelor s degree in a business-related or IT-related field of concentration or equivalent combination of training and experience; advanced degree is a plus.
• Five (5) years or more of related work experience with knowledge of SOX Compliance concepts, practices and procedures, and IT subject-matter proficiency (i.e., IT logical access, change management, operations, application controls); audit experience within public accounting and/or internal audit with IT focus is required (Big 4 is a plus).
• Knowledge of IT / Information Security risks and controls principles
• Relevant professional certification is required, such as Certified Information Systems Auditor (CISA), Certified information systems security professional (CISSP), Certified in Risk and Information Security Controls (CRISC), etc
• Experience with controls design, controls, audit, or risk (i.e., IT controls testing, internal audits, operational audits, advisory/consulting/compliance).
• Proficiency with audit software like Audit Board.
• US Citizenship is required to apply.

Compensation: 103k - 129k

Our health and welfare benefits are designed to support you and your priorities. Offerings include:

• Health, dental, and vision insurance
• Paid time off and holidays
• Retirement benefits (including 401(k) matching)
• Educational…