SOX Controls Specialist

Here’s some core responsibilities listed for what I am thinking regarding SOX control specialist.

Control Design Guidance
• Provide second line control governance, with priority focus towards SOX in scope IT and application controls.
• Partner with first line control owners to evaluate whether controls:
o Address the appropriate risk and control objective
o Are properly scoped and executed at the right frequency
o Are clearly defined and testable
o Are designed to produce observable outputs or signals that enable deviation detection
• Identify and provide guidance on control design gaps or weaknesses (e.g., overly manual controls, unclear evidence expectations, insufficient traceability).
• Promote consistent control design patterns and governance standards across the control environment, with emphasis on areas subject to SOX and other high assurance requirements.

Control Automation & Continuous Improvement
• Drive control designs that allow GRC to leverage technology to detect deviations from expected behavior, monitor full populations, and reduce reliance on manual attestations.
• Design automated controls and monitoring signals (e.g., automated reports, workflow approvals, system logs, attestation tooling) that reduce ad hoc audit requests and support more efficient audit execution through standardized, system generated evidence.
• Partner with orchestration, automation, and technical teams to implement automation enhancements (e.g., ticket workflow fields, log retention, access recertification automation, dashboards).
• Validate that automated outputs and monitoring artifacts are reliable, repeatable, and audit acceptable, including appropriate exception handling and traceability to control intent.

We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.

- 5+ years of experience in SOX, IT risk, internal audit, or GRC‑related functions.
- Strong knowledge of SOX ITGCs, application controls, and control design principles.
- Experience working in a second‑line risk, compliance, or control governance role.
- Proven ability to partner with technical and non‑technical stakeholders to influence control design and execution.
- Hands‑on experience with GRC platforms and audit‑supporting technologies.
- Strong analytical skills with the ability to assess control effectiveness and identify design gaps.
- Excellent written and verbal communication skills.

- Experience with SOX Compliance controls
- Experience with NIST audits and compliance

Benefit packages for this role will start on the 1st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.