Manager, SOX Compliance-IT (HYBRID-Richmond, VA)

Position Description

The Manager SOX Compliance IT assists the Director of Sox Compliance Business and IT Controls by managing enterprise-wide Sarbanes-Oxley (SOX) IT compliance program. This role ensures that internal controls over financial reporting (ICFR) are designed effectively and operating as intended in alignment with Committee of Sponsoring Organizations of the Treadway Commission (COSO) and Control Objectives for Information and Related Technologies (COBIT) frameworks. The SOX Compliance IT program focuses on IT General Controls (ITGCs) application controls and technology-related risks. This role partners closely with IT Internal Audit and external auditors to ensure the integrity of financial reporting and compliance with regulatory requirements.

Position Accountabilities

• Manage the design implementation and oversight function of the SOX IT compliance program including annual scoping risk assessments control testing and remediation.
• Manage the ITGC framework and ensure alignment with COSO and COBIT standards.
• Collaborate with IT and business leaders to assess the impact of system changes implementations and upgrades on SOX controls.
• Provide recommendations on control automation optimization and emerging technologies (e.g. cloud AI cybersecurity).
• Manage relationships with external auditors and ensure timely and accurate responses to audit requests.
• Develop and maintain documentation for IT controls including narratives flowcharts and risk/control matrices.
• Monitor regulatory developments and industry trends to ensure the SOX Compliance IT program remains current and effective.
• Participate in or manage special projects as required and assigned.

Organizational Relationship

This position reports to the Director of Sox Compliance Business and IT Controls.

Position Qualifications

Education & Experience

• Bachelors degree in Information Systems Accounting Finance or related field; advanced degree or certifications (e.g. CISA CPA CIA) preferred.
• 5 years of experience in SOX compliance IT audit or internal controls.

Knowledge & Skills

• Good understanding of ITGCs application controls ERP systems and financial reporting processes.
• Experience with GRC platforms and audit management tools.
• Effective communication and stakeholder engagement skills.
• Proactive approach to risk management and control design.

Salary offered will be based on several factors including but not limited to education work experience certifications etc. This position is also eligible to participate in either an applicable incentive compensation plan for the position or a discretionary profit sharing bonus program. General information on our comprehensive benefits package can be found by visiting

We are proud to be an Equal Employment Opportunity employer. We maintain a drug-free workplace.

Required Experience:

Manager