POSITION SUMMARY: The Senior SOX Compliance Analyst - IT supports the Manager, IT Compliance, in executing the Company's SOX IT compliance program and broader IT risk management activities. The incumbent assists in evaluating IT controls, performing testing, maintaining documentation, and coordinating with IT control owners and audit teams. The Senior SOX Compliance Analyst - IT helps ensure that in-scope applications, systems, and infrastructure components meet SOX requirements and that IT processes operate in alignment with internal policies and regulatory expectations.
PRINCIPAL RESPONSIBILITIES:- Supports the execution of the IT SOX compliance program, including walkthroughs, control testing, evidence collection, and documentation updates.
- Assists in evaluating the design and operating effectiveness of IT general controls (ITGCs) and application controls across in-scope systems.
- Helps maintain process documentation, including control matrices, flowcharts, narratives, and testing workpapers.
- Coordinates with IT control owners to obtain evidence, clarify control execution, and support remediation activities.
- Supports the Manager in preparing reports, dashboards, and status updates for IT leadership and audit stakeholders.
- Participates in IT risk assessments by gathering data, identifying potential gaps, and assisting in documenting results.
- Collaborates with internal and external auditors by facilitating requests, supporting walkthroughs, and ensuring timely delivery of audit materials.
- Assists in developing and delivering training materials for IT control owners to reinforce SOX expectations and compliance responsibilities.
- Performs other job-related duties as assigned or apparent.
QUALIFICATIONS:- Foundational understanding of IT general controls, SOX requirements, and the COSO framework.
- Familiarity with IT environments, including applications, databases, operating systems, and access/security concepts.
- Strong analytical and problem-solving skills with the ability to evaluate data, identify issues, and propose solutions.
- Effective communication and interpersonal skills, with the ability to collaborate across IT, Accounting, and business teams.
- Strong organizational skills and attention to detail, with the ability to manage multiple tasks and deadlines.
- Demonstrated understanding of internal controls and the relationship between IT controls and financial reporting processes.
- Progress toward professional certifications such as CISA, CIA, CPA, or Security+ is preferred.
- Knowledge of internal controls over financial reporting and familiarity with business process controls is a plus.
MINIMUM REQUIREMENTS:- 2 - 4 years of experience in IT audit, IT compliance, or related IT risk functions in public accounting (Big 4 or national firm) or 4 - 7 years of experience in IT audit, IT compliance, or related IT risk functions in a public company environment.
- Hands-on experience supporting SOX IT control testing or participating in IT audits.
- Experience with SOX testing, documentation, or remediation activities (IT or business process).
This is a hybrid role requiring onsite presence in our Phoenix, AZ office. This candidate will be required to work onsite 4-days per week, with the option to work 1-day per week remote.Please note, this position is not sponsorship eligible.Rewarding Compensation and BenefitsEligible employees can elect to participate in:
• Comprehensive medical benefits coverage, dental plans and vision coverage.
• Health care and dependent care spending accounts.
• Short- and long-term disability.
• Life insurance and accidental death & dismemberment insurance.
• Employee and Family Assistance Program (EAP).
• Employee discount programs.
• Retirement plan with a generous company match.
• Employee Stock Purchase Plan (ESPP).
• Paid Time Off (PTO)
• Benefits: https://jobs.republicservices.com/us/en/about-us/benefits
The statements used herein are intended to describe the general nature and level of the work being performed by an employee in this position, and are not intended to be construed as an exhaustive list of responsibilities, duties and skills required by an incumbent so classified. Furthermore, they do not establish a contract for employment and are subject to change at the discretion of the Company.
