United States
Remote
Senior
Full Time
2 days ago
💰$ 83,400 - $ 166,800
SOXIT ControlsAuditCryptoFinanceSenior
Requirements
- •8+ years of experience in IT audit, internal audit, external audit, or SOX compliance, with significant exposure to IT general controls testing.
- •Experience in crypto, fintech, payments, or technology-intensive environments with complex, rapidly evolving infrastructure.
- •CISA and CPA certifications required. Candidates with one certification who are actively pursuing the other will be considered.
- •Strong knowledge of ITGC frameworks, SOX compliance requirements, COSO, COBIT, and PCAOB auditing standards as they apply to IT controls.
- •Hands-on experience testing ITGCs across access management, change management, and system operations.
- •Technical fluency with enterprise technology environments.
- •Understanding of how IT controls underpin the reliability of financial reporting.
- •Experience working with or alongside external auditors (Big 4 preferred) on SOX engagements.
- •Experience operating across multi-entity structures or multiple jurisdictions.
- •Effective communicator who can translate technical IT audit findings for control owners, engineering teams, senior leadership, and external stakeholders.
What You'll Do
- •Lead the execution of independent testing of IT General Controls (ITGCs) across key control domains: access management, change management, and system operations.
- •Evaluate the design and operating effectiveness of IT controls across in-scope applications and infrastructure, including systems that support blockchain-native operations, digital asset custody, and crypto trading platforms.
- •Document testing procedures and results to meet Internal Audit and external auditor quality standards.
- •Identify new systems, applications, or process changes that emerge during testing and assess their SOX implications in coordination with the SOX Compliance team.
- •Build and maintain testing programs, templates, and workpapers that create a repeatable, scalable foundation for IT SOX testing.
- •Identify opportunities to leverage AI-enabled workflows and data analytics to improve testing coverage and efficiency across IT control domains.
- •Independently validate the remediation of open SOX findings, including material weaknesses and significant deficiencies, across ITGC control areas.
- •Evaluate control deficiencies by performing root cause analysis and assessing the severity and pervasiveness of exceptions to inform deficiency classification.
- •Assess whether management’s remediation actions are adequately designed and operating effectively before closing findings.
- •Track remediation progress, escalate delays or gaps, and report status to Internal Audit leadership and the Audit Committee as required.
- •Coordinate with the SOX Compliance team to ensure alignment on remediation expectations, timelines, and evidence requirements.
- •Serve as a trusted Internal Audit point of contact for IT control owners across Engineering, Infrastructure, Security, and IT Operations.
- •Bridge the gap between audit methodology and engineering culture.
- •Contribute to Internal Audit reporting to the Audit Committee, external auditor, and senior leadership on IT SOX testing coverage, findings, and remediation status.
- •Partner with the business process SOX tester and co-sourced resources to ensure coordinated testing coverage across the full SOX program.
Nice to Have
- •Familiarity with blockchain infrastructure, digital asset custody systems, on-chain transaction processing, or crypto-native technology environments.
- •Experience with CI/CD pipelines, GitLab or similar version control systems, cloud infrastructure (AWS, GCP), and modern deployment practices.
- •Prior experience building or scaling an IT SOX testing program in a growth-stage or first-year SOX company.
- •Familiarity with audit management platforms such as AuditBoard or Workiva.
- •Familiarity with AI-assisted audit tools and willingness to adopt emerging technologies.
About Kraken
Kraken is a cryptocurrency exchange platform that provides parachain auctions, staking, and index services.
San Francisco, CA
1000 - 5000
Finance