Comerica Bank
SOX IT Audit Manager
Comerica Bank, Frisco, Texas, United States, 75034
SOX IT AUDIT MANAGER
The Enterprise Reporting Controls & Governance Group is responsible for Comerica's compliance with the provisions of Section 404 of The Sarbanes-Oxley Act of 2002 ("SOX"), and ultimately, providing certification that our internal control environment is operating effectively. The group reports administratively to the Chief Accounting Officer and works closely with key stakeholders across business units, corporate functions, technology, and the second and third lines of defense.The Senior IT Associate is responsible for comprehensive reviews of IT processes to ensure appropriate controls and procedures are in place and operating effectively.
Position Responsibilities:Perform/actively participate in the walkthrough of significant IT processes and ensure SOX documentation is accurate and reflects relevant risk, key controls, and current process.Identify key risks and controls, controls optimization, including the configuration of controls around business processes and within IT environments.Review SOX documentation (risk control matrices, narratives, flowcharts) prepared by IT partners and identify areas where control enhancements and/or documentation improvements are needed.Complete and/or review SOX testing for key general IT controls (ITGCs), IT application controls (ITACs), critical interfaces, and key reports/spreadsheets identified in the walkthrough process.Research and assess deficiencies identified and work with process owners to identify an appropriate solution. Follow-up on remediation activities to verify appropriate resolution.Review SOC 1 report evaluations to ensure exceptions are appropriately addressed and that appropriate complementary controls are in place and operating effectively.Act as a change agent for continual improvement of the internal control environment.
Position Qualifications:Bachelor's Degree from an accredited university or 4 years relevant experience4 years of experience in public accounting, large company IT or internal audit, risk consulting and/or leading4 years of experience with SQL and/or Power BI and Microsoft Access Databases4 years of experience with proficiency in Microsoft Office, including Access and VISIOAbility to prioritize work, meet deadlines, achieve goals, and work under pressure in a dynamic and complex environment
Licenses & Certifications:CISSP certification (Certified Information Systems Security Professional) preferredCIA certification (Certified Internal Audit) preferredWork Best Category:
Category C - Days in the office will either be designated days or will vary week to week from 2-5 days.Hours:
8:00am - 5:00pm Monday - Friday. This position offers a hybrid work model that includes onsite and remote days as determined by the manager.Salary:
To Be Determined Based on Individual Experience
#J-18808-Ljbffr
The Enterprise Reporting Controls & Governance Group is responsible for Comerica's compliance with the provisions of Section 404 of The Sarbanes-Oxley Act of 2002 ("SOX"), and ultimately, providing certification that our internal control environment is operating effectively. The group reports administratively to the Chief Accounting Officer and works closely with key stakeholders across business units, corporate functions, technology, and the second and third lines of defense.The Senior IT Associate is responsible for comprehensive reviews of IT processes to ensure appropriate controls and procedures are in place and operating effectively.
Position Responsibilities:Perform/actively participate in the walkthrough of significant IT processes and ensure SOX documentation is accurate and reflects relevant risk, key controls, and current process.Identify key risks and controls, controls optimization, including the configuration of controls around business processes and within IT environments.Review SOX documentation (risk control matrices, narratives, flowcharts) prepared by IT partners and identify areas where control enhancements and/or documentation improvements are needed.Complete and/or review SOX testing for key general IT controls (ITGCs), IT application controls (ITACs), critical interfaces, and key reports/spreadsheets identified in the walkthrough process.Research and assess deficiencies identified and work with process owners to identify an appropriate solution. Follow-up on remediation activities to verify appropriate resolution.Review SOC 1 report evaluations to ensure exceptions are appropriately addressed and that appropriate complementary controls are in place and operating effectively.Act as a change agent for continual improvement of the internal control environment.
Position Qualifications:Bachelor's Degree from an accredited university or 4 years relevant experience4 years of experience in public accounting, large company IT or internal audit, risk consulting and/or leading4 years of experience with SQL and/or Power BI and Microsoft Access Databases4 years of experience with proficiency in Microsoft Office, including Access and VISIOAbility to prioritize work, meet deadlines, achieve goals, and work under pressure in a dynamic and complex environment
Licenses & Certifications:CISSP certification (Certified Information Systems Security Professional) preferredCIA certification (Certified Internal Audit) preferredWork Best Category:
Category C - Days in the office will either be designated days or will vary week to week from 2-5 days.Hours:
8:00am - 5:00pm Monday - Friday. This position offers a hybrid work model that includes onsite and remote days as determined by the manager.Salary:
To Be Determined Based on Individual Experience
#J-18808-Ljbffr