IT Lead SOX Compliance and Audit Specialist in Portage, MI at Stryker Corporation

发布日期: 9/30/2019



Leverage your compliance expertise for a global impact. You'll have a chance to work with multiple existing systems as well as those that come from acquisitions.

You will ensure that processes and associated controls for SOX compliance are managed and assessed for effectiveness to reduce overall compliance risk across the global IS organization.

In this role, you will liaise closely with Internal Audit to ensure full alignment on all IS regulatory compliance issues where SOX requirements/controls are concerned. Specifically, you will:

  • Assist the Global IS SOX Compliance Manager in establishing and standardizing SOX compliance and IT general controls.
  • Ensure that SOX controls across the global IS organization are in place, managed and effective.
    • Execute and/or provide oversight of IT General Controls and Application Controls for in-scope SOX systems, including control monitoring and reporting results of monitoring to IS senior management.
    • Work with control owners to resolve any potential issues before formal audits.
  • Establish key metrics/status report to management team on a periodic basis; metrics/status to include compliance review execution results, general audit activity metrics, management action plan status, special projects status, and other key metrics as deemed appropriate. 
  • Assist control owners in development/refinement of procedures associated with their controls.
  • Partner with Internal Audit to ensure that IS controls are consistent with IA expectations.
  • Work with Internal Audit on scheduling of internal and external SOX audits and coordinate support for the audits within the global IS organization.
  • Ensure that internal and external audits for SOX compliance are executed efficiently and drive completion of action plans for audit findings.
    • Coordinate with Internal Audit on the preparation and communication of audit remediation work.
    • Track and monitor implementation of management action plans (MAPs) and monitor remediation according to agreed-upon schedule.
  • Perform compliance assessments for IS projects to determine whether systems needs SOX materiality.
  • Provide training and coaching to IS staff regarding areas of SOX compliance risks and related controls.
  • Keep current on emerging IS risks and IS relevant topics.

You must have a Bachelors degree. Additional education or certifications (e.g. CISA) are a plus.

  • Experience working for large public accounting firm or related work experience required
  • Minimum of 5 years of experience required; experience in a regulated industry (e.g., Life Sciences, Medical Device, Finance) preferred
  • Thorough understanding of SOX 404 and IT General Computer Control principles and practices required
  • Knowledge of industry standard frameworks (e.g., ISO 9001/27001/20000, COBIT, COSO), a plus
  • Working experience with SOX controls and compliance (i.e., manual controls), required
  • Auditing experience, including planning/executing/reporting, and hosting/facilitating, required
  • Experience with ERP systems (e.g., Oracle, JD Edwards, iSeries, SAP), required
  • Understanding of 21 CFR 820, a plus

Work From Home: No

Travel Percentage: 10%

Stryker Corporation is an equal opportunity employer. Qualified applicants will receive consideration for employment without regard to race, ethnicity, color, religion, sex, gender identity, sexual orientation, national origin, disability, or protected veteran status. Stryker is an EO employer – M/F/Veteran/Disability.

Stryker Corporation will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor’s legal duty to furnish information.