Manager, SOX Compliance-IT (HYBRID-Richmond, VA)

Position Description

The Manager, SOX Compliance IT, assists the Director of Sox Compliance, Business and IT Controls by managing enterprise-wide Sarbanes-Oxley (SOX) IT compliance program. This role ensures that internal controls over financial reporting (“ICFR”) are designed effectively and operating as intended, in alignment with Committee of Sponsoring Organizations of the Treadway Commission (“COSO”) and Control Objectives for Information and Related Technologies (”COBIT”) frameworks. The SOX Compliance IT program focuses on IT General Controls (ITGCs), application controls, and technology-related risks. This role partners closely with IT, Internal Audit, and external auditors to ensure the integrity of financial reporting and compliance with regulatory requirements.

Position Accountabilities

• Manage the design, implementation, and oversight function of the SOX IT compliance program, including annual scoping, risk assessments, control testing, and remediation.
• Manage the ITGC framework and ensure alignment with COSO and COBIT standards.
• Collaborate with IT and business leaders to assess the impact of system changes, implementations, and upgrades on SOX controls.
• Provide recommendations on control automation, optimization, and emerging technologies (e.g., cloud, AI, cybersecurity).
• Manage relationships with external auditors and ensure timely and accurate responses to audit requests.
• Develop and maintain documentation for IT controls, including narratives, flowcharts, and risk/control matrices.
• Monitor regulatory developments and industry trends to ensure the SOX Compliance IT program remains current and effective.
• Participate in, or manage, special projects, as required and assigned.
  
  

Organizational Relationship

This position reports to the Director of Sox Compliance, Business, and IT Controls.

Position Qualifications

Education & Experience

• Bachelor’s degree in Information Systems, Accounting, Finance, or related field; advanced degree or certifications (e.g., CISA, CPA, CIA) preferred.
• 5 years of experience in SOX compliance, IT audit, or internal controls.
  
  

Knowledge & Skills

• Good understanding of ITGCs, application controls, ERP systems, and financial reporting processes.
• Experience with GRC platforms and audit management tools.
• Effective communication, and stakeholder engagement skills.
• Proactive approach to risk management and control design.
  
  

Salary offered will be based on several factors including but not limited to education, work experience, certifications, etc. This position is also eligible to participate in either an applicable incentive compensation plan for the position or a discretionary profit sharing bonus program. General information on our comprehensive benefits package can be found by visiting https://www.atlanticunionbank.com/about/careers/benefits.

We are proud to be an Equal Employment Opportunity employer. We maintain a drug-free workplace.