Lead Analyst, SOX Compliance – AWS
Employment Information
Report this job
Job expired or something wrong with this job?
Job Description
Lead Analyst managing SOX Compliance for AWS at Genesys. Overseeing internal control effectiveness and collaborating with technology and finance teams.
Responsibilities:
- Own the annual SOX compliance plan, including enterprise scoping, risk assessment, and management of the master testing calendar
- Lead AWS scoping activities, including identification of in-scope accounts, services, integrations, and data flows impacting financial reporting
- Evaluate and document AWS controls in alignment with the shared responsibility model and SOX requirements
- Lead walkthroughs with process owners and technology teams to develop and maintain narratives, flowcharts, and risk control matrices
- Execute and review testing of manual, automated, ITGC, and cloud-native controls, ensuring workpapers meet PCAOB standards
- Assess design and operating effectiveness of AWS controls such as IAM, logging, monitoring, and configuration management
- Partner with Cloud Engineering and Security teams to define and implement compliant control structures for AWS environments
- Evaluate control deficiencies, perform root cause analysis, determine severity, and drive remediation efforts through closure
- Develop and maintain dashboards and reporting to communicate SOX status, testing progress, and remediation trends to leadership and the Audit Committee
- Administer the GRC platform, including workflows, evidence management, and continuous monitoring capabilities with AWS integrations
- Coordinate with external auditors, align on testing strategies, and manage requests to ensure efficient audit execution
- Advise control owners on control design, segregation of duties, and automation opportunities, including use of cloud-native capabilities
- Maintain alignment of SOX controls with COSO, COBIT, and relevant cloud security frameworks
- Lead SOX impact assessments for AWS implementations, cloud migrations, system changes, and M&A activities
- Promote automation and continuous monitoring through integration with AWS services and analytics tools
- Mentor junior team members and review deliverables to ensure consistency, quality, and scalability of the SOX program
Requirements:
- Bachelor’s degree in Information Systems, Computer Science, Engineering, or a related field
- 7+ years of SOX, internal audit, or Big 4 experience with strong exposure to ITGCs, automated controls, and cloud environments
- Demonstrated experience leading SOX scoping and control evaluations in AWS or cloud-first organizations
- AWS Certified Security – Specialty (SCS-C02) required
- CPA, CIA, CISA, or similar certification strongly preferred
- Deep knowledge of COSO framework, PCAOB standards, and ITGCs across on-prem and cloud environments
- Hands-on experience with AWS services such as IAM, CloudTrail, Config, Security Hub, GuardDuty, and CloudWatch
- Strong understanding of AWS shared responsibility model and cloud control design
- Experience with cloud frameworks such as NIST, CIS AWS Foundations Benchmark, and COBIT
- Familiarity with ERP and business platforms such as Workday, Salesforce, Zuora, and GitHub, including integrations with AWS
- Proficiency with GRC tools such as Workiva or OneTrust and analytics tools such as Power BI, Tableau, or SQL
Benefits:
- Great benefits and perks like larger tech companies
- Independence to make a larger impact on the company
- Ownership of work
Similar Jobs
Real Estate Compliance Reviewer
Real Estate Compliance Reviewer handling compliance for North Carolina real estate transactions. Reviewing documents, managing submissions, and ensuring compliance standards are met in a remote setup.
Compliance Analyst – CIP
Compliance Analyst responsible for performing CIP reviews at Apex Clearing Corporation. Utilizing research skills and third-party vendor information to ensure compliance standards are met.
Senior GRC Analyst
Senior GRC Analyst at Doppler managing security and compliance programs. Ensuring SOC 2 Type II and ISO 27001 certifications while collaborating across teams.
Compliance Program Coordinator
Compliance Program Coordinator providing administrative support for AICPA Peer Review Program. Managing workflows, ensuring compliance, and supporting peer review processes.
Technical GRC Specialist
Technical GRC Specialist focusing on enhancing cybersecurity measures and managing vendor risk at an AI-powered support automation platform. Collaborating with teams to ensure compliance and audit readiness.
Corporate Telecom Compliance Manager
Strategy & Operations role focusing on telecommunications compliance at Twilio. Leading strategic execution and governance for global communications platform compliance initiatives.
Vice President, Compliance & Risk Management
Vice President Compliance & Risk Management leading healthcare compliance initiatives and risk management strategy for Emerus. Develop and implement comprehensive frameworks to support patient safety and ethical standards.
Senior Engineer, GRC – Audit & Compliance
Senior Engineer overseeing audit and compliance programs at NextGen Healthcare, ensuring alignment with regulatory and security requirements. Leading audit lifecycle and optimizing GRC solutions for efficient compliance operations.
Compliance Specialist
Compliance Manager providing governance and assurance for compliance obligations and processes. Overseeing the organization’s Integrated Management System and ensuring compliance with regulatory frameworks.
Regulatory Consultant – CMC, Small Molecule Products
Support execution of global regulatory CMC strategy and submissions for small molecule products. Collaborate with cross-functional teams at Syneos Health to deliver effective regulatory compliance in the biopharmaceutical industry.
Regulatory Labeling Manager – Artwork Development, Source Text Review
Labeling Artwork Reviewer ensuring compliance in pharmaceutical product packaging through detailed review and collaboration with various teams. Focused on regulatory requirements and global market alignment.
GRC Analyst
GRC Analyst at Primer responsible for managing Governance, Risk & Compliance programs. Collaborates with engineering and security teams to maintain compliance and manage audit readiness.
Regulatory Manager
US Regulatory Manager at Unchained ensuring compliance with U.S. financial services regulations. Involves collaboration across departments for effective risk management and policy implementation.
Compliance Officer
Compliance Officer managing AML/CTF compliance and operations at Allocated Bullion Exchange. Overseeing day-to-day operations including onboarding and regulatory obligations.
Onboarding Compliance Specialist
Onboarding Compliance Specialist ensuring HR compliance for clinical workforce at Charlie Health. Assisting in personnel file management and regulatory adherence for new hires.
Director, Regulatory Affairs
Director of Regulatory Affairs leading regional regulatory strategy and stakeholder engagement for Grid United. Focus on developing frameworks and supporting regulatory approvals for electric transmission projects.
Senior Regulatory Affairs Associate
Regulatory Affairs Senior Associate at Amgen assisting in regulatory document creation and submission. Supporting US regulatory activities and compliance under USRL supervision.
Regulatory and Start Up Specialist
Regulatory Specialist managing Site Activation for clinical studies in life sciences. Ensuring compliance with regulations and quality in deliverables for Swedish sites.
Senior Business SOX Compliance Manager
Senior Business SOX Compliance Manager leading business process control framework at Zillow. Involves assessments, integrations, and team development in a distributed work environment.
Assistant Manager, Special Education Compliance
Assistant Manager for IDEA supporting special education compliance and program implementation in various Texas and remote locations. Collaborating with staff, students, and families in achieving academic success.