What are the responsibilities and job description for the Manager/Senior Manager, SOX Compliance (IT) position at CareDx, Inc.?
Manager / Sr Manager, SOX Compliance (IT)
CareDx, Inc. is a leading precision medicine solutions company focused on the discovery, development, and commercialization of clinically differentiated, high-value healthcare solutions for transplant patients and caregivers. CareDx offers products, testing services, and digital healthcare solutions along the pre-and post-transplant patient journey, and is the leading provider of genomics-based information for transplant patients.
CareDx is looking for an accomplished Sr Manager, SOX Compliance (governance, risk, and compliance) subject matter leader with strong background in SoX, IT Systems Change Management, Cross-function Collaboration, and Project Management to be part of the IT team that oversees IT systems internal controls over all SoX in scope systems, IT policies, procedures, change, and project management for the Company. Coordinate ITGC and SOX-related activities with the systems owners, cross-functional control owners, internal auditors, external auditors, and outside SOX consultants using consultative approach. Update and maintain company-wide control standards, perform SOX/audit projects, and provide control-related training to process owners. He/she will be responsible for maintaining and preparing clear, detailed, and accurate SOX IT documentation, including systems diagrams, control descriptions, risk control matrices, and partners with business control owners in planning the SOX compliance testing program.
Responsibilities:
- A hands-on leader and SOX Compliance subject matter expert who works with IT, FP&A, and cross-functional process owners to help achieve ongoing design, reviewing, testing, improving, and remediating the IT systems controls for SoX as well as other applicable compliance such as CLIA, CAP, FDA, GxP, etc.
- Update and align IT processes, systems, controls, and policies to industry’s standard and drive remediation efforts for any identified deficiencies.
- A change agent, influencer, cross-functional leader and collaborator to drive and facilitate on-going SoX and compliance training programs for IT process and control owners.
- Maintain and enhance SOX controls documentation so they reflect the current environment and would comply with SOX compliance, including testing documentation and systems diagrams.
- Proactively participate and guides the team in planning, prioritization, and delivery of system enhancements using unified methodologies as well as maintains documentation concerning planning, status, testing results, and other reporting needs.
- Conduct risk-based internal audits to determine soundness, adequacy, and application of IT and controls including identifying control weaknesses, exceptions, and deficiencies in operations.
- IT Lead in managing the year-end external audit, including direct interaction with independent auditors on internal control testing.
- As required, overseeing confidential control reviews, special investigations, and other ad-hoc projects including coordination of any investigations performed by external agencies.
- Ascertaining the appropriateness of the Company’s protection and safeguarding of assets and recommending areas for improvements.
- Actively participates in IT Governance Council to help facilitate the meetings and reviews proposals timely.
- Maintain a current knowledge base of audit industry practices and ensure best practices are always considered. Perform all assigned audit duties in a manner that reflects the highest professional standards and complies with the guidelines of the Institute of Internal Auditors (IIA) and the Institute of Information Systems Audit and Control Association (ISACA).
- Other duties as assigned.
Qualifications:
- Bachelor’s degree in Business, Accounting, Computer Science, Information Systems.
- Professional certification such as CISA, CIA, or similar is strongly preferred.
- Must have recent hands-on SOX experience including successful remediation of compliance deficiencies and material weaknesses with similar size companies.
- Big 4 public accounting firm is strongly preferred.
- Healthcare industry experience preferred.
- Minimum 7 years of relevant work experience (Big 4 public accounting and corporate SOX experience in a multi-national public company)
- Strong understanding of the Sarbanes-Oxley Act, the 2013 COSO framework, and SEC guidance for management's assessment of internal controls over financial reporting.
- Strong understanding of current accounting (GAAP) and auditing (GAAS) principles.
- Strong planning, project management, and analytical skills.
- Proficient in Microsoft Office suite applications.
- NetSuite, inventory management, LIMS and related software proficiency preferred.
Additional Details:
Every individual at CareDx has a direct impact on our collective mission to improve the lives of organ transplant patients worldwide. We believe in taking great care of our people, so they take even greater care of our patients.
Our competitive Total Rewards package includes:
- Competitive base salary and incentive compensation
- Health and welfare benefits including a gym reimbursement program
- 401(k) savings plan match
- Employee Stock Purchase Plan
- Pre-tax commuter benefits
- And more!
In addition, we have a Living Donor Employee Recovery Policy that allows up to 30 days of paid leave annually to a full-time employee who makes the selfless act of donating an organ or bone marrow.
With products that are making a difference in the lives of transplant patients today and a promising pipeline for the future, it’s an exciting time to be part of the CareDx team. Join us in partnering with transplant patients to transform our future together.
CareDx, Inc. is an Equal Opportunity Employer and participates in the E-Verify program.
******** We do not accept resumes from headhunters, placement agencies, or other suppliers that have not signed a formal agreement with us.
#LI-Hybrid
Senior Manager- Compliance (Alternative Assets)
IQ-EQ -
San Francisco, CA
Risk Consulting - SOX ITGC - Manager - Seattle
EY -
San Francisco, CA
Senior Product Manager - Security, Compliance, Trust
Samsara -
San Francisco, CA
