IT SOX Audit Specialist

Position Objective

Work with all FS locations to plan, design, control and audit the SOX auditing controls across all Federal Signal Locations.  Work with control/task owner as well as internal and external audit on delivering evidence and remediation plans.  Responsible for implementing new SOX audit controls.  Part of the M&A team to design and implement SOX controls for new acquisitions.

Key Activities/Responsibilities

1. Work with internal audit to prepare detailed plans for performing IT Audits, including the identification of key risks and controls and the determination of audit objectives nd development of an appropriate audit program.
2. Plan and execute IT audit projects designed to provide assessment of internal controls and operational performance, in accordance with department and professional standards.
3. Stay abreast of best practices both internally and externally and provide a conduit for introducing those practices to the company. This includes utilization of knowledge of the current IT environment and industry IT trends to identify potential issues and risks, provide recommendations and opportunities for improvement.
4. Perform or assist in the performance of special projects and major IT initiatives, including the implementation and design of the internal controls over cybersecurity.
5. Assist in the evaluation of acquisition targets and integration after closure of acquisitions, including IT risk due diligence as well as implementation of IT SOX controls.
6. Demonstrate and apply a thorough understanding of complex information systems throughout the business cycle.
7. Assist in the maintenance of the GRC tool, including updates to internal IT controls, narratives, updating general information and recommendations for new policies and procedures.
8. Maintain and gather approvals for the IT Policies and Procedures documentation
9. Maintain and gather approvals for the IT Sox Application Universe.

Education 

• Degree in an IT related subject or 10 years pf equivalent experience.
• MCSA, and MCP

Job Experience

• Exchange and SharePoint experience
• Project management experience preferred

Skills Required 

• Understanding of concepts related to information systems audit, including security and control risks such as logical and physical access security, change management, information security, business recovery practices and network technology.
• Exposure to SOX section 404 and an understanding of the general compliance requirements related to information technology.
• Experience with electronic audit work paper technology.
• Excellent communication skills. Ability to interact with all levels of management and staff.  Must be able to conduct meetings and write at a publication quality level to communicate findings and recommendations to all levels of management and staff.
• Strong sense of time management
• Proficient in office applications