Manager – IT Internal Controls and SOX Compliance (Corporate)

Summary of On-site Position:

AGC Automotive Americas is looking for an accomplished SOX Compliance (governance, risk, and compliance) subject matter expert with a robust background in SOX, IT systems change management, cross-functional collaboration, and Project Management, to be part of the IT team that oversees IT systems internal controls over all SOX in-scope systems, IT policies, procedures, change, and project management for the Company. In this role, you will coordinate ITGC and SOX-related activities with systems owners, cross-functional control owners, internal auditors, external auditors, and outside SOX consultants. As the Manager, you will update and maintain company-wide control standards, perform SOX/audit projects, and provide control-related training to process owners. You will be responsible for maintaining and preparing clear, detailed, and accurate SOX IT documentation, including systems diagrams, control descriptions, and risk control matrices, and partnering with business control owners in planning the SOX compliance testing program.

Location: Farmington Hills, MI

Responsibilities & Leadership Competencies

• Hands-on leader and SOX Compliance subject matter expert who works with IT, accounting, and cross-functional process owners to help achieve ongoing design, review, testing, and remediation of the IT systems controls for Sarbanes-Oxley compliance.
• Provide strategic thinking, thought leadership, and guidance on identifying gaps in IT controls and designing a proactive risk assessment.
• Plan and manage direct activities of the team to align governance programs with the organization’s objectives and execute roadmaps.
• Provide guidance, assessment, and oversight on the governance of Change Management and System Access Controls and provide recommendations on the next level of maturity strategy/roadmap and standards.
• Work on the completion of comprehensive risk assessment, documentation, risk mitigation guidance, and related reporting for key enterprise initiatives, across various technologies, platforms, and environments including those relative to business technology integrations.
• Risk assessment, management, and reporting of emerging technologies such as artificial intelligence, machine learning, cloud computing, and automation solutions.
• Analysis of internal controls adequacy and guidance on the creation of new controls based on identified control gaps.
• Implement a Risk and Controls Matrix pursuant to business objectives, regulatory environments, NIST, SOC, COBIT, ITIL, DCAM, and other industry risk and control frameworks and playbooks.
• Proactive research on compliance changes within AGC Automotive America’s industry regs and standards. Analytics to provide insights and recommendations for risk reduction and improvement.
• Update and align IT processes, systems, controls, and policies to industry standards and drive remediation efforts for any identified deficiencies.
• Act as a change agent, influencer, cross-functional leader, and collaborator to drive and facilitate ongoing SOX and compliance training programs for IT process and control owners.
• Maintain and enhance SOX controls documentation so they reflect the current environment and would comply with SOX compliance, including testing documentation and systems diagrams.
• Proactively participate and guide the team in planning, prioritization, and delivery of system enhancements using unified methodologies as well as maintain documentation concerning planning, status, testing results, and other reporting needs.
• Work with internal audit to conduct risk-based audits to determine soundness, adequacy, and application of IT and controls including identifying control weaknesses, exceptions, and deficiencies in operations.
• IT Lead in managing the year-end external audit, including direct interaction with independent auditors on internal control testing.
• Maintain a current knowledge base of audit industry practices and ensure best practices are always considered. Perform all assigned audit duties in a manner that reflects the highest professional standards and complies with the guidelines of the Institute of Internal Auditors (IIA) and the Institute of Information Systems Audit and Control Association (ISACA).
• Lead IT project management timelines, ensuring they are completed on time, within scope and budget with proper IT audit controls.
• Conduct and/or manage special projects and ad hoc requests to support the senior leadership team and other duties as assigned.

Required Qualifications

• Bachelor’s degree in Computer Science, Engineering, Information Systems, or related discipline.
• Must have recent hands-on SOX experience including successful remediation of compliance deficiencies and material weaknesses with similar size public companies.
• 5 years of relevant work experience in a combination of public accounting firms with a focus on SOX compliance and/or corporate SOX experience in a multi-national public company, with a minimum of 3 years of experience in technology or support of technology.
• Sound understanding of the Sarbanes-Oxley Act, the 2013 COSO framework, NIST, COBIT, SOC, DCAM, and SEC guidance for management's assessment of internal controls over financial reporting.
• Sound understanding of current accounting and auditing (GAAS) principles.
• Critical thinking, analytical, leadership, planning, project management, and organizational skills.
• Proven ability to build relationships and influence and motivate teams to ensure that the work activities are established, understood, supported, and completed in a timely manner.
• Proficient in Microsoft Office suite applications.

Preferred Qualifications

• Professional certification such as CISA, CIA, CISSP.
• Public accounting with a PCAOB registered firm.
• Experience in IT project management.
• Experience with SAP.

If you are interested in being considered for this position, submit your resume and salary requirements at www.agccareers.com.

Equal Employment Opportunity Employer – To be considered applicants must be legally authorized to work in the United States without sponsorship.