Manager Information Security

Job Description:

Join a great team!

SOX IT General Controls Supervisor

Description

DXC is seeking an IT General Controls (ITGC) Supervisor to join the SOX IT team.  This hands-on role reports to the Head of IT General Controls (ITGC) and assists the company in driving a consistent controls across all in-scope SOX applications, operating systems, and databases.

While supervising IT general controls testing, you are responsible for identifying risks and vulnerabilities that may impact the completeness and accuracy of our financial statements, assisting application owners with control (policy) compliance and issue remediation, and tracking remediation progress.    This is a high-impact role that requires the ability to absorb information quickly, meet immovable deadlines, and support overall policy compliance.  

The ITGC Supervisor is responsible for working with a local team of ITGC Specialists, assisting with questions, tracking progress, solving roadblocks, advising on testing approach, and reviewing work. Every member of the program leadership team is required to review work and provide effective feedback for success, complete or update technical testing documentation, learn new technologies as required, and mentor team members and coworkers. 

Essential Skills:

• Must have supervisory experience, specifically in SOX ITGC testing and workpaper review
• Must have deep skills in database and operating system control testing
• Experience and ability to provide effective and constructive feedback to the team, coach them to meet our execution quality standards, and resolve any impediments to completing testing
• Ability to manage and motivate the team to complete tasks on time and with a high degree of quality
• Must be a self-starter, proactive, and results-oriented; outcome focused
• Strong creative thinking, problem solving, planning, time-management and organization skills to balance and prioritize work; must be able to work independently and meet deadlines
• Must have knowledge and experience with IT auditing relevant to financial statement audits and SOX controls testing; Big 4 experience is a plus  
• Experience testing complex ERP environments (SAP and Oracle)
• Deep knowledge of application security, user access management, privileged access management, change management, database management and security, and operating systems
• Must be able to deliver clear and concise work papers
• Strong communication skills needed to interface with DXC IT and business coworkers to explain complex issues in clear language that highlights financial reporting risks and implications
• Interpersonal and influence skills to cultivate relationships, facilitate negotiations, and build partnerships with key stakeholders at all levels
• Understand the relationship between IT and financial processes/SOX controls with a working knowledge of corporate business processes

Duties:

At the direction of the Head of ITGCs:

• Assist an India based team of 8 ITGC testers
• Own and manage a testing portfolio of IT general controls across various business and IT applications with associated operating systems and databases
• Provide clear and concise work papers following professional guidelines
• Manage testing schedules and meet deadlines
• Assist with remediation and verification of actions taken
• Maintain complete and accurate documentation of the control environment
• Educate business process and IT application owners about risks and controls
• Build effective relationships and partnerships throughout the organization
• Foster a compliance culture and assist with embedding controls into practice

Basic Qualifications:

• A minimum of 10 years of experience with IT general controls and SOX compliance programs or IT internal or external audit
• Bachelor's degree in information systems, accounting, risk management, or related discipline
• Relevant certification such as CISA, CISM, CPA, or CIA
• Big 4 experience is a plus
• Experience working in a global organization of considerable size, scope, and complexity is a plus

Recruitment fraud is a scheme in which fictitious job opportunities are offered to job seekers typically through online services, such as false websites, or through unsolicited emails claiming to be from the company. These emails may request recipients to provide personal information or to make payments as part of their illegitimate recruiting process. DXC does not make offers of employment via social media networks and DXC never asks for any money or payments from applicants at any point in the recruitment process, nor ask a job seeker to purchase IT or other equipment on our behalf. More information on employment scams is available here.