Intermediate SOX Coordinator with SAP experience to track/support audits, risk management and ITAC & ITGC for control testing.

Our SE Calgary client is looking for an Intermediate IT SOX Coordinator with SAP experience to support annual SOX audits, risk management and ITAC/ITGC control testing.

This role requires you to be onsite Tuesday, Wednesday and Thursday at the clients SE location with work from home Monday and Friday.

Must Haves:

• 5+ years' experience supporting SOX Audits, with at least 2 full audit cycles completed
• Experience with SAP or comparable large ERP systems and their associated controls
• Experience with ITAC (IT Application Controls) and ITGC (IT General Controls)

Nice to Have:

• Certified Information Systems Auditor (CISA) or Certified Information Systems Security Professional (CISSP) designations
• Experience with Auditing Software, e.g, AuditBoard

Responsibilities:

• Participate in the development and enhancement of IT governance frameworks.
• Provide training and guidance to internal teams on IT control processes and compliance requirements.
• Schedule control execution actions
• Communicate expectations to the IT team and to business stakeholders
• Coordinate internal/external testing of controls and track the status of gaps and remediation actions.
• Perform IT SOX testing activities
• Monitor and report on the status of IT control deficiencies and work with stakeholders to remediate identified issues.
• Collaborate with IT and business units to identify, assess, and document IT controls in compliance with SOX requirements.
• Upgrade existing management reports, policies, procedures, and process documentation to an acceptable SOX-level standard
• Create and maintain SOX-relevant data flow diagrams and IT controls flowcharts
• Conduct risk assessments and assist in the development of control objectives and testing plans.
• Work closely with external auditors to facilitate efficient and effective audit procedures.
• Design, develop, and maintain a mechanism of monitoring, evaluating, and reporting IT controls effectiveness, resulting in process improvements from control owners and control performers
• Design, develop, and maintain a mechanism of monitoring, evaluating, and reporting IT SOX controls activities that fosters a sense of accountability upon control owners and control performers
• Participate in the development and enhancement of IT governance frameworks.
• Stay abreast of regulatory changes and industry best practices to ensure ongoing compliance with SOX requirements