SOX Auditor - IT Controls Manager

KrakenCrypto, FinTech

Location: Canada Secondary Locations: Ireland, United Kingdom Workplace: RemoteFull-TimeManager

Salary not disclosed

Apply NowOpens the employer's application page

Job Details

8+ years of experience in IT audit, internal audit, external audit, or SOX compliance, with significant exposure to IT general controls testing.
Experience in crypto, fintech, payments, or technology-intensive environments with complex, rapidly evolving infrastructure.
CISA and CPA certifications required. Candidates with one certification who are actively pursuing the other will be considered.
Strong knowledge of ITGC frameworks, SOX compliance requirements, COSO, COBIT, and PCAOB auditing standards as they apply to IT controls.
Hands-on experience testing ITGCs across access management, change management, and system operations.
Technical fluency with enterprise technology environments — you don’t need to be an engineer, but you need to understand how systems, databases, and deployment pipelines work to effectively test the controls around them.
Understanding of how IT controls underpin the reliability of financial reporting — you can connect an ITGC failure to its downstream impact on business process controls and the financial statements.
Experience working with or alongside external auditors (Big 4 preferred) on SOX engagements.
Experience operating across multi-entity structures or multiple jurisdictions.
Effective communicator who can translate technical IT audit findings for control owners, engineering teams, senior leadership, and external stakeholders.

Lead the execution of independent testing of IT General Controls (ITGCs) across key control domains: access management, change management, and system operations.
Evaluate the design and operating effectiveness of IT controls across in-scope applications and infrastructure.
Document testing procedures and results to meet Internal Audit and external auditor quality standards.
Identify new systems, applications, or process changes that emerge during testing and assess their SOX implications.
Build and maintain testing programs, templates, and workpapers.
Independently validate the remediation of open SOX findings, including material weaknesses and significant deficiencies, across ITGC control areas.
Evaluate control deficiencies by performing root cause analysis and assessing the severity and pervasiveness of exceptions.
Serve as a trusted Internal Audit point of contact for IT control owners across Engineering, Infrastructure, Security, and IT Operations.
Contribute to Internal Audit reporting to the Audit Committee, external auditor, and senior leadership on IT SOX testing coverage, findings, and remediation status.
Partner with the business process SOX tester and co-sourced resources to ensure coordinated testing coverage across the full SOX program.

View Full Description & ApplyYou'll be redirected to the employer's site