Support the design, documentation, and monitoring of IT controls to address financial reporting risks and ensure compliance with Sarbanes-Oxley (SOX) requirements.
Ready to apply for roles like this?
Unlock the company name and direct application link. Subscribers get instant access to fresh jobs across Dubai, Abu Dhabi and Riyadh, many with visa support.
Unlock employer & apply directly
Key Roles & Responsibilities
- Support the Manager, Internal Controls in assessing IT SOX risks, facilitating control walkthroughs, and assisting with the design of IT controls to meet SOX 404 requirements.
- Document IT controls across key systems, maintain updated risk and control matrices (RACM), and track changes to controls. Ensure RACM documentation is complete, accurate, and reflects changes in IT processes, systems, and the overall IT environment.
- Monitor IT General Controls (ITGCs), automated application controls, and key system reports in scope for SOX. Prepare reports, dashboards, and presentations of monitoring status.
- Track IT control deficiencies and collaborate with control and system owners to implement timely, sustainable remediation actions.
- Under the guidance of the Manager, Internal Controls, act as a liaison during internal and external audits by facilitating design walkthroughs with control owners and addressing IT control design queries.
- Assist in developing training materials, guidance documents, and awareness initiatives to improve understanding of IT controls and SOX compliance across the organisation.
- Support initiatives to optimise internal controls, identifying opportunities for process improvements, and staying updated on emerging IT risks to proactively recommend enhancements.
Requirements
Education
- A bachelor’s degree in MIS, Computer Science, Accounting, Finance, or a related field is required.
- Pursuing or holding certifications such as CRISC, CISA, or CIA is a plus.
Experience
- At least one (1) year of relevant experience with IT controls in internal/external audit or public accounting. Exposure to SOX compliance, IT risk assessments, or control testing through internships or co-op programs is an advantage.
- Experience with ERP systems or IT systems common in telecom (billing systems, asset management systems, etc.) is a plus.
Knowledge, Skills and Abilities
- Understanding of Automated Controls and IT General Controls.
- Understanding of SOX requirements, ICFR, financial reporting cycles, frameworks such as COSO, ISO 27001, NIST, and COBIT, with the ability to document and test IT controls.
- Proficient in Microsoft Office Suite (Excel, Access, PowerPoint, Word, Outlook).
- Excellent written and verbal communication skills, along with a flexible mindset and the ability to learn quickly in a dynamic environment.
- The candidate should be capable of analysing control evidence to detect issues or anomalies, and approach problems methodically to find root causes and solutions.
