Senior Manager, IT Audit – SOX

Senior Manager, IT Audit - SOX

Work Arrangement:
Hybrid in Needham, MA

About the Role

We are seeking a
Senior Manager, IT Audit
to lead the IT SOX program and oversee all aspects of
IT General Controls (ITGC)
and
IT Application Controls (ITAC)
testing. This is a
hands-on leadership role
requiring deep technical expertise, strong project management capabilities, and the ability to operate independently in a fast-paced, global environment.

The role also includes conducting IT audits, supporting enterprise risk management (ERM), and partnering closely with internal stakeholders and external auditors.

Key Responsibilities

• Lead and manage the IT SOX program, including planning, risk assessment, testing execution, and reporting
• Conduct IT audits, including fieldwork, report writing, and presentation of findings to senior leadership
• Collaborate with Finance, Audit, and IT teams to ensure SOX compliance, particularly where controls have IT dependencies
• Partner with external auditors on IT SOX efforts; align on testing scope, approach, and expectations
• Identify, assess, and test ITGCs and ITACs across complex systems (e.g., ERP and enterprise platforms)
• Monitor outsourced ITGC/SOX testing activities and report progress to leadership
• Provide guidance to control owners on control design, documentation, and ongoing performance
• Ensure timely updates to narratives, SOPs, and control documentation following system or process changes
• Maintain the Risk Control Matrix (RCM) and deficiency tracker; monitor remediation efforts
• Act as a key liaison between external auditors and IT leadership
• Support the development and execution of an enterprise risk management (ERM) framework
• Stay current on regulatory requirements, IT control frameworks (e.g., COBIT, NIST, ISO), and emerging technologies
• Participate in special projects as assigned

Required Qualifications

• 10–12 years of experience assessing and testing IT controls within complex ERP environments
• Prior experience in a Big Four firm and/or internal audit function with a strong IT SOX focus
• Master's degree in Management Information Systems, Finance, Accounting, or Business Administration
• Strong technical knowledge of IT systems, financial applications, user access controls, and change management
• Deep expertise in ITGC and ITAC controls related to core financial processes
• Professional certification required (e.g., CISA, CISSP, CIA, or equivalent)
• Excellent verbal and written communication skills
• Proven ability to manage multiple priorities in a dynamic environment

Preferred Qualifications

• Strong IT background or working knowledge of enterprise databases and operating systems (e.g., Oracle, Windows, UNIX, Linux)
• Ability to influence and communicate effectively across technical and non-technical stakeholders
• Strong organizational skills with real-time prioritization capability
• High integrity, accountability, and results orientation
• Experience within a manufacturing or complex operational environment

Culture & Values

This organization values
ownership, accountability, and continuous improvement
. Team members are encouraged to think beyond their immediate scope, collaborate cross-functionally, and drive meaningful impact in a high-performance environment.

Diversity, equity, and inclusion are core to the culture. Individuals are supported in bringing their authentic selves to work, growing their careers, and contributing to a collaborative, respectful workplace.