Overview
On Site
Full Time
Skills
Regulatory Compliance
Accounting
Optimization
Business Process
Collaboration
Flowchart
Documentation
Sarbanes-Oxley
Testing
Interfaces
Research
System On A Chip
Reporting
Continuous Improvement
Internal Control
CISA
CISSP
Communication
Management
Project Management
Analytical Skill
Microsoft Windows
Unix
Microsoft SQL Server
Oracle
Database
Workday
Microsoft Office
Microsoft Visio
Job Details
Senior Associate SOX IT Controls
The Enterprise Reporting Controls & Governance Group is responsible for Comerica's compliance with the provisions of Section 404 of The Sarbanes-Oxley Act of 2002 ("SOX"), and ultimately, providing certification that our internal control environment is operating effectively. The group reports administratively to the Chief Accounting Officer and works closely with key stakeholders across business units, corporate functions, technology, and the second and third lines of defense.
The ITSr Associate is responsible for comprehensive reviews of IT processes to ensure appropriate controls and procedures are in place and operating effectively.
Position Responsibilities:
Job Specific Knowledge/Skills:
The Enterprise Reporting Controls & Governance Group is responsible for Comerica's compliance with the provisions of Section 404 of The Sarbanes-Oxley Act of 2002 ("SOX"), and ultimately, providing certification that our internal control environment is operating effectively. The group reports administratively to the Chief Accounting Officer and works closely with key stakeholders across business units, corporate functions, technology, and the second and third lines of defense.
The ITSr Associate is responsible for comprehensive reviews of IT processes to ensure appropriate controls and procedures are in place and operating effectively.
Position Responsibilities:
- Perform/actively participate in the walkthrough of significant IT processes and ensure SOX documentation is accurate and reflects relevant risk, key controls, and current process.
- Assist in identifying key risks and controls, controls optimization, including the configuration of controls around, business process and within IT environments.
- Collaborate with IT partners to review SOX documentation (risk control matrices, narratives, flowcharts) and identify areas where control enhancements and/or documentation improvements are needed.
- Complete and/or review SOX testing for key general IT controls (ITGCs), IT application controls (ITACs), critical interfaces, and key reports/spreadsheet identified in the walkthrough process.
- Research and assess deficiencies identified and work with process owners to identify an appropriate solution. Follow-up on remediation activities to verify appropriate resolution.
- Assess vendor SOC 1 report to ensure appropriate controls are identified and operating effectively.
- Act as a change agent for continual improvement of the internal control environment.
Job Specific Knowledge/Skills:
- Eligible for CISA, CISSP, CIA exam; professional certification holders preferred.
- Strong verbal and written communication, organizational, time management, project management, and analytical skills.
- Solid IT background preferred (Windows, UNIX, SQL server/Oracle database, Workday, etc.)
- Experience with Microsoft Office, including Access and VISIO.
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.