**Country:** India **Location:** Ecospace Campus 3A, 4th Floor, Outer Ring Road, Bellandur, Bengaluru- 560103 **Position Title:** SOX Compliance Lead – Cyber Security **Location:** Bangalore **About the Role::** We are seeking an experienced and proactive IT SOX Compliance Analyst to oversee and drive the execution of the SOX compliance program within the organization. This role focuses on planning and managing SOX-related activities, ensuring timely completion of key compliance deliverables, and collaborating with multiple teams to ensure robust ITGC controls and adherence to regulatory requirements. The ideal candidate will take ownership of driving the process, monitoring progress, facilitating collaboration with internal teams and external auditors, managing issues, and ensuring training and awareness across the organization. **Key Responsibilities:** · Develop a detailed plan for SOX compliance activities across the calendar year, aligning with organizational goals, and ensuring that key milestones are met. · Oversee the completion of SOX narratives and gap assessments by application owners, ensuring they are comprehensive, accurate, and on schedule. Provide guidance and follow-up to ensure these activities are completed within the defined timelines. · Monitor and track the testing of ITGC controls. Work with application and system owners to ensure testing is completed as required, addressing any delays or roadblocks proactively. · Collaborate with relevant teams to evaluate SOC reports. Ensure any findings are addressed and work closely with internal stakeholders to resolve issues related to SOC reports. · Serve as the main point of contact for both internal and external auditors, coordinating requests, assisting with audits, and ensuring that audit cycles are supported efficiently. · Work closely with the Internal Controls team to understand the scope of applications, systems, and their associated controls, ensuring alignment with SOX compliance goals. · Facilitate SOX workshops and manage monthly SOX Sub-council meetings to foster awareness, ensure engagement, and provide guidance on best practices for SOX compliance. · Identify and drive opportunities to automate SOX compliance processes. Advocate for continuous improvements in efficiency and program effectiveness across the organization. · Take a proactive approach to problem-solving, addressing challenges related to SOX compliance and offering solutions for process improvements or overcoming obstacles in the compliance lifecycle. · Develop and deliver training programs to internal teams and application owners to ensure understanding of SOX compliance requirements, internal controls, and best practices. Ensure ongoing education to keep all relevant stakeholders up to date on compliance and control procedures. · Foster a culture of compliance by ensuring employees at all levels are equipped with the necessary knowledge and tools to maintain compliance with SOX requirements. · Manage issues arising from auditors, internal testing, or assessments. Understand the root cause, document issues in the compliance tool, assign ownership to the relevant application teams, propose remediation actions, establish due dates, and follow up to ensure timely closure of issues. **Qualifications & Skills:** · Minimum 8 years of experience in IT controllership, IT compliance, or SOX compliance, with a focus on ITGC controls testing, regulatory compliance, and issues management. · Strong understanding of ITGC controls, SOX compliance, and regulatory requirements (SOX, COSO framework), with experience in information security frameworks such as ISO27001 and NIST CSF. · Experience with ERP systems such as SAP, JDE, and Oracle, with a solid understanding of SAP GRC and IT infrastructure. · Excellent analytical and problem-solving abilities, along with strong communication skills. Ability to handle pressure situations and manage multiple stakeholders to meet deadlines. · Familiarity with compliance and GRC tools such as Auditboard SOX Hub and SNOW GRC, or similar platforms. **Preferred Qualifications:** · Full-time college degree in Computer Science, Information Technology, or a related field. · ISO Lead Auditor, CISA, and/or CSM certifications are highly desirable. · Experience with information security frameworks such as ISO27001, NIST CSF, and other relevant frameworks. · Proven ability to lead, coordinate, and collaborate across teams and functions, managing timelines, expectations, and deliverables. **Benefits:** **We are committed to offering competitive benefits programs for all of our employees, and enhancing our programs when necessary.** **Have peace of mind and body with our health insurance** **Make yourself a priority with flexible schedules and leave Policy** **Drive forward your career through professional development opportunities** **Achieve your personal goals with our Employee Assistance Programme** **Our commitment to you:** **Our greatest assets are the expertise, creativity and passion of our employees. We strive to provide a great place to work that attracts, develops and retains the best talent, promotes employee engagement, fosters teamwork and ultimately drives innovation for the benefit of our customers. We strive to create an environment where you feel that you belong, with diversity and inclusion as the engine to growth and innovation. We develop and deploy best-in-class programs and practices, providing enriching career opportunities, listening to employee feedback and always challenging ourselves to do better. This is** **_The Carrier Way_** **.** **Join us and make a difference.** **Carrier is An Equal** **Opportunity/Affirmative** **Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status, age or any other federally protected class.** **Job Applicant's Privacy Notice:** Click on this link (https://www.corporate.carrier.com/legal/privacy-notice-job-applicant/) to read the Job Applicant's Privacy Notice