SOX IT Testing Specialist

Degree in Accounting, Computer information systems, Technology, Risk management or related field Professional certification ISACA (e.g. CISA (Certified Information System Security Audit) or equivalent) preferred 2-3 years in IT audit/SOX or related assurance in a global environment; Big 4 experience is a plus. Solid understanding of ITGC/ITAC, control design/effectiveness testing, and SOX 404 requirements. Ability to manage multiple testing assignments and meet strict deadlines in a fast‑paced environment. Strong documentation and analytical skills; experience with evidence evaluation and issue resolution. Familiarity with ERP (SAP), related applications, and IT control frameworks; exposure to data analytics/visualisation and automation/AI is advantageous. Experience with SOX lifecycle tooling (workflow, documentation, dashboards) preferred. Attention to detail and accuracy The SOX IT Testing Specialist is responsible for performing annual Sarbanes-Oxley (SOX) 404 IT controls testing across multiple regions. The successful candidate will collaborate with the global SOX team, IT process owners, and external auditors to ensure consistent application of methodology, strong documentation quality, and timely testing delivery for Information Technology Automated Controls (ITACs) and Information Technology General Controls (ITGCs). Execute IT SOX Testing: Perform ITGC and ITAC testing for assigned controls and systems to agreed timelines and standards, ensuring compliance with global SOX methodology and documentation quality. Evidence Gathering & Documentation: Conduct walkthroughs, collect and validate evidence; document testing results to support conclusions on control design and operating effectiveness. Issue Identification & Remediation Support: Communicate deficiencies promptly; track remediation progress and perform retesting to confirm timely closure. Stakeholder Collaboration: Maintain clear communication with IT process owners, second-line assurance functions, and external auditors throughout the SOX lifecycle; resolve queries and provide progress updates. Tools, Data & Continuous Improvement: Use the SOX tool for workflow, documentation, and reporting; contribute to automation initiatives and process improvements to enhance testing efficiency and consistency. Enterprise Contribution: Share insights from SOX to inform the internal audit plan; support the delivery of SOX testing across different control types, CAS projects, risk targeted audits, and advisory engagements as required.