This role will be a part of Operations Excellence function and Tech Excellence team and will report to Sr. Manager – Service Delivery. The Audit Manager for SOX Compliance will lead all aspects of the management and governance of SOX-related IT applications, focusing on Access Management, Change Management, Segregation of Duties (SOD), and remediation of deficiencies identified by internal and external audits. The role requires a strong understanding of SOX requirements, IT controls, and audit methodologies, as well as the ability to provide strategic recommendations and implement corrective actions to ensure compliance and mitigate risks.Responsibilities & Accountabilities:Lead and handle the compliance efforts for SOX-relevant IT applications, ensuring adherence to established SOX requirements and internal control frameworks.Supervise the access management process, including the implementation and review of user access controls to ensure accurate segregation of duties and minimize unauthorized access.Lead and Coordinate Cybersecurity controls and standards set by the McDonalds Global Security teamLead, control and coordinate across teams within EPP on the following actions –Data Security (data scanning, data security posture management, etc), Global Security Operations Center (threat detection), Software/resource clarity, Vulnerability Management (High or Critical issues), Identity & Entitlements assessments/issues, ConfigurationConduct periodic user access reviews for SOX in-scope applications and address any identified deficienciesEnsure that all changes stay in sync with SOX requirements and that any deviations are identified and remediated.Evaluate and make sure SOD controls within IT applications to prevent conflicts of interest and reduce the risk of fraud or errors.Identify and assess IT deficiencies reported by internal and external auditors, particularly those related to SOX compliance.Develop and implement remediation plans to address identified deficiencies, ensuring timely resolution and communication with relevant partners.Serve as the primary point of contact for SOX-related audits, coordinating with internal and external auditors to facilitate audit activities.Continuously assess and improve IT controls, processes, and procedures to enhance SOX compliance and reduce the likelihood of deficiencies.Stay up-to-date with regulatory changes, industry standard methodologies, and emerging risks to ensure the organization’s SOX compliance framework remains effective.Provide training and mentorship to IT and business teams on SOX compliance requirements and standard methodologies.Prepare and present audit reports, findings, and remediation plans to Director/senior management and audit committees if needed.Review and recommend improvements for the SOX strategy initiative by examining current IT policies and procedures related to IT SOX processes, such as change management and access management.Benefits eligible: Yes
Bonus eligible: Yes
Long term incentive eligible: Yes
The expected salary range for this role is $112,860 - $143,900 per year
The above represents the expected salary range for this job requisition. Ultimately, in determining your pay, we may also consider your experience, and other job-related factors.
