The Opportunity:
We, at Flywire, are seeking a highly motivated and detail-oriented SOX IT Manager to play a key role in maintaining and enhancing Flywire鈥檚 SOX compliance program. This individual will serve as the central point of contact for addressing all ITGC inquiries, managing escalations related to SOX IT control issues, and collaborate with cross-functional teams, including Finance, Operations, Internal Audit, and IT, to ensure the design and execution of effective internal controls. The ideal candidate thrives in a fast-paced environment, possesses a strong understanding of SOX and external audit requirements, and is passionate about fostering a culture of compliance and accountability.
The ideal candidate will bring extensive experience in IT SOX audits, controls testing, and risk management, while fostering collaboration across departments. In addition to the specific responsibilities outlined above, employees may be required to perform other such duties as assigned by the Company. This ensures operational flexibility and allows the Company to meet evolving business needs.
Responsibilities
Liaise with the SOX Testing team (Internal Audit) and key stakeholders to ensure Flywire鈥檚 overall compliance with SOX Section 404 requirements.
Collaborate with various teams for all matters related to SOX IT General Controls (ITGC)
Respond to inquiries and escalations related to SOX ITGCs from internal and external auditors, ensuring timely resolution and clear communication
Work in lockstep with SOX team to ensure scope alignment and audit support
Drive efforts to improve SOX IT scoping strategies, develop a comprehensive understanding of applicable IT and business processes, and support the maintenance of integrated IT and business process, risk and control framework documentation
Consult on the control design and implementation of required and repeatable ITGCs with process owners to meet regulatory requirements, including for new products, processes and system implementation launches ensuring appropriate internal controls are in place prior to launch
Create and improve SOX ready documentation (e.g., narratives, flow charts, IT process & control descriptions)
Evaluate and track reported control deficiencies, root causes, and planned correctiveactions in conjunction with IT and business process owners to ensure timely and accurate resolution
Contribute to regular reports to senior leadership, and other stakeholders on the status of SOX IT compliance, control issues, and remediation progress
Strive to continuously improve the SOX program to be more efficient and effective through optimization and automation:
Support the stand up of a continuous controls monitoring tool by ensuring SOX ITGC requirements are defined and in place to enable SOX readiness including automated ITGC evidence gathering and testing efforts
Support the integration of IT SOX controls with broader compliance initiatives, including PCI DSS, SOC2, and other regulatory requirements as needed
Serve as a subject matter expert on SOX ITGCs and provide guidance on ITGC-related matters thru cross functional discussions and workshops to foster a proactive risk management culture and alignment with SOX requirements and company objectives
Support training and communications as needed on relevant IT general control practices for the technology & cyber community
Stay abreast of evolving technology & cyber threats, news, and trends to enhance risk and control management strategies
Assist with special risk assessment and department initiatives, as assigned
Maintain procedures, playbooks, virtual webpages, and metrics dashboards surrounding SOX ITGC effectiveness