Truist Financial - Charlotte, NC
posted 2 days ago
About the position
The position is responsible for designing and executing a governance program that guides, monitors, evaluates, and reports on the effectiveness of internal control over financial reporting around technology. This includes determining in-scope IT processes, applications, and infrastructure for annual Sarbanes-Oxley (SOX) testing. The role also involves providing guidance on SOX requirements related to technology for control/process documentation, testing, and issue management, ensuring compliance with Truist's Sarbanes-Oxley, SOC reports, and FDICIA compliance efforts. The essential functions of the job include managing professional-level teammates, setting the team's direction, and communicating individual and team priorities. The position requires managing deliverables against expected results, making judgments about team priorities, and resolving technical, operational, risk management, business, and organizational challenges. The role also involves leading complex projects, making leadership decisions, serving as a Subject Matter Expert (SME) for technology risk and compliance, and interfacing with business and technology partners on projects. Additionally, the position requires utilizing various control frameworks to provide guidance, identifying key risks and controls, and monitoring third-party risk evaluations.
Responsibilities
- Design and execute a governance program for internal control over financial reporting around technology.
- Determine in-scope IT processes, applications, and infrastructure for SOX testing.
- Provide guidance on SOX requirements related to technology for control/process documentation, testing, and issue management.
- Manage professional-level teammates and set the team's direction.
- Manage deliverables for the team against expected results.
- Identify and resolve technical, operational, risk management, business, and organizational challenges.
- Lead complex and visible projects with notable risk and complexity.
- Serve as a Subject Matter Expert (SME) for technology risk and compliance for SOC1 and SOX processes.
- Interface with business and technology partners on projects.
- Utilize COSO Framework, CoBIT, ITIL, ISO, FFIEC for guidance.
- Identify key risks and controls and recommend improvements.
- Monitor and review evaluations of third-party risk and vendor SOC1 reports.
- Provide oversight during assessments to evaluate controls and security.
- Consult with the business on current and emerging technologies and their impact on SOX compliance.
Requirements
- Bachelor's degree in IT or Accounting or equivalent education and related training.
- Seven years of relevant IT audit experience.
- Ability to interpret and explain complex information to a range of audiences.
- Ability to influence others at senior levels.
- Strong analytical and problem-solving skills.
- Excellent verbal and written communication skills.
- Ability to work well in a dynamic, team-oriented environment.
- Strong understanding of PCAOB and SEC requirements for SOX compliance.
- Certification in at least one of the following: CISA, CIA, ITIL, CPA, CISSP.
- Demonstrated leadership skills.
Nice-to-haves
- Supervisory experience.
- Financial services or specialized industry experience.
- Master's degree in Information Systems, Computer Science or related IT Audit and Controls discipline.
- Working knowledge of current and emerging technologies.
Benefits
- Medical insurance
- Dental insurance
- Vision insurance
- Life insurance
- Disability insurance
- Accidental death and dismemberment insurance
- Tax-preferred savings accounts
- 401k plan
- Vacation days (minimum of 10 days)
- Sick days (minimum of 10 days)
- Paid holidays
- Defined benefit pension plan (depending on position)
- Restricted stock units (depending on position)
- Deferred compensation plan (depending on position)
