Director of SOX

The Director of SOX is responsible for leading and managing the organization’s Sarbanes-Oxley (SOX) compliance program, including the design, implementation, documentation, assessment, and continuous improvement of internal controls over financial reporting (ICFR). This role partners closely with Accounting, Finance, Internal Audit, Information Technology, Legal, People Operations, and external auditors to ensure compliance with SOX requirements and support a strong internal control environment.

The Director of SOX serves as a strategic leader and subject matter expert, driving governance, risk mitigation, process improvement, and control optimization across the organization while ensuring compliance with regulatory requirements for a publicly traded company.

• → Program Strategy & Scoping
  • →Lead the annual SOX risk assessment and scoping exercise, identifying significant accounts, locations, and critical IT systems.
  • →Define the testing strategy for the fiscal year, including the balance between internal testing and "direct assistance" for external auditors.

• → Integrated Internal Controls (Business & ITGC)
  • →Business Processes: Oversee the documentation and testing of key financial cycles (e.g., Treasury, Lending Operations, Fair Value of Loans, Revenue Recognition).
  • →ITGC & Automated Controls: Drive compliance strategy for IT General Controls, including Access Security, Change Management, and File Maintenance.
  • →Evaluate the impact of Service Organizations (SOC 1 / SOC 2 reports) on the company’s control environment.

• → Remediation & Advisory
  • →Partner with Process Owners to design remediations for identified deficiencies and monitor progress.
  • →Consult on new system implementations or business process changes to ensure "compliance by design."

• → Stakeholder Management
  • →Present quarterly status updates to the Audit Committee and Senior Management.
  • →Manage the relationship with external audit firms to ensure alignment of testing results and minimize organizational audit fatigue.

• →Bachelor’s degree in Accounting, Finance, or related field required.
• →CPA, CIA, CISA, or other relevant certification strongly preferred.
• →8+ years of progressive experience in SOX compliance, internal audit, public accounting, accounting, or related fields.
• →Experienced leader, with skills in stakeholder management, strategic planning, and team development.
• →Experience supporting a publicly traded company required.
• →Strong knowledge of SOX 404 requirements, COSO framework, SEC regulations, and PCAOB auditing standards.
• →Deep proficiency in managing integrated internal controls, spanning both business process cycles (such as Revenue Recognition and Fair Value) and Information Technology General Controls (ITGCs), including Change Management and Access Security.
• →Experience evaluating third-party risk and reviewing SOC 1 / SOC 2 reports for service organizations.
• →Strong understanding of financial reporting processes and internal controls.
• →Exceptional project management and organizational skills.
• →Strong analytical, problem-solving, and critical-thinking abilities.
• →Excellent written and verbal communication skills.
• →Ability to influence cross-functional stakeholders and drive accountability.

OppFi is an equal opportunity employer and does not discriminate based on any actual or perceived legally recognized protected bases under local, state, federal law, or regulations. Our goal as a company is to build an equitable workplace that actively works to dismantle systems of oppression in our processes, procedures, and interactions. We aim to help our employees thrive where they work and beyond. Check out our Culture page here.

As part of OppFi’s commitment to providing equal opportunity to qualified individuals, OppFi will ensure that persons with disabilities are provided reasonable accommodation as defined by applicable laws and organizational policies. If reasonable accommodation is needed to participate in the job application or interview processes or job requirements, please contact our People Team at recruiting@oppfi.com.

Pursuant to the requirements of the California Consumer Privacy Act, OppFi is providing the "OppFi California Employee Privacy Policy", which details the categories of personal information collected and your rights under the policy. If you are a California resident, please review the policy here: https://www.oppfi.com/careers/.

The information in this document is for general informational purposes only. It is not intended to be an all-inclusive list or description of the organization and its requirements for positions and employees. OppFi reserves the right to modify or change the information on this document at its discretion.