Responsibilities
- Design and deploy artificial intelligence and machine learning systems to enable full population testing, reducing reliance on manual sampling methods.
- Lead the design and evaluation of IT controls for SOX compliance, identifying control gaps, operational weaknesses, and coordinating remediation with process stakeholders.
- Utilize generative AI and robotic process automation to streamline audit documentation, including walkthrough records, control mappings, and report generation.
- Collaborate with IT teams to develop live monitoring dashboards that track key risk indicators, supporting a continuous auditing approach.
- Apply data analytics to detect early warning signals of risk in revenue and production cycles before they escalate into significant control issues.
- Drive the creation of automated risk detection tools and key risk indicators within the enterprise risk management structure, using data to monitor technology dependencies and third-party networks.
- Evaluate automated controls in critical business processes such as Quote-to-Cash and Procure-to-Pay to verify data accuracy and system performance.
- Oversee SOX-related IT control frameworks, including general controls, deficiency identification, remediation planning, and collaboration with owners to strengthen controls.
- Conduct audits before and after major system implementations or ERP rollouts to avoid control breakdowns during go-live phases.
- Lead IT risk evaluations during mergers and acquisitions, assessing cybersecurity readiness and control maturity of target organizations.
- Manage the incorporation of newly acquired companies into the enterprise internal control model, focusing on data transfer and system integration risks.
- Oversee testing of IT general controls and application controls to support SOX 404 compliance efforts.
- Ensure information systems comply with federal contracting regulations such as NIST 800-171, CMMC, and FAR/DFARS standards.
