.Job Summary:The IT Compliance Lead will play a crucial role in ensuring the company's compliance with the IT policies and control standards, particularly in relation to Sarbanes-Oxley (SOX) Act and associated Information Technology General Controls (ITGCs).
This position involves leading both external and internal audits, managing the IT compliance program, and coordinating with various departments and external teams to ensure that IT controls are effectively designed and operating efficiently.Key Responsibilities:Work with different parts of IT and business, including sites in EMEIA, to ensure compliance with IT policies and control standards.Develop and maintain a comprehensive understanding of IT processes, risks, and controls.Lead the preparation, planning, and execution of IT SOX control tests.Coordinate with external auditors to facilitate the IT SOX compliance audits.Work closely with internal teams to ensure that IT controls meet SOX compliance requirements.Engage with business stakeholders to ensure SOX audit processes are understood and adhered to.Communicate control weaknesses and work with control owners and IT management to address them.Monitor and report on the status of IT SOX compliance efforts and control effectiveness.Assist with the supervision and IT function planning and preparation for the annual risk-based IT audit plan and execute assigned components.Assist in defining the IT scope, approach, and project-specific risks and procedures for internal audit and SOX engagements.Prepare appropriate documentation (e.G.
narratives, flowcharts, control matrices, segregation of duties analyses, audit reports, etc.)
in support of all assurance and consulting work performed.Perform testing of general and automated application controls relevant to Sarbanes-Oxley compliance.Execute testing and documentation of IT general controls, automated business controls and business or operational/regulatory controls that contain an IT componentRecommend changes to IT internal control processes to improve operational efficiency and effectiveness.Assist in the follow-up on internal audit recommendations to ensure implementationCoordinate with external auditors on IT-related matters.Evaluate, implement and incorporate the use of computer-assisted audit tools and automation techniques when deemed cost-effective.Analyse processes, risks, and controls related to Berry IT environments to identify improvement opportunities.Perform IT Risk assessment to identify compliance risks and potential vulnerabilities.Comply with relevant auditing standards and define/implement best practices within the IT Department