Position Summary

The SAP/CIS SOX Compliance Analyst III supports regulatory and compliance initiatives within the Transformation Project Office, specifically aligned with the Customer Information System (CIS) program. This role is responsible for ensuring Sarbanes-Oxley (SOX) and General Information Technology Controls (GITC) requirements are properly identified, evaluated, and validated prior to production deployment. The analyst will work cross-functionally with project stakeholders to support regulatory deliverables, strengthen compliance frameworks, and reduce organizational risk.

Key Responsibilities

• Identify, evaluate, and support regulatory and SOX compliance deliverables for CIS transformation initiatives.
• Assess project designs, blueprints, and system implementations to determine applicable GITC and SOX control requirements.
• Perform control design reviews and validation activities to ensure regulatory and audit readiness prior to production deployment.
• Conduct compliance risk assessments and recommend control enhancements, monitoring methods, and policy improvements.
• Collaborate with project teams, business stakeholders, cybersecurity, and audit teams to support compliance planning and delivery.
• Analyze existing compliance policies and procedures, identify gaps, and recommend updates to strengthen governance practices.
• Support development and implementation of compliance tools, systems, and reporting related to regulatory initiatives.
• Gather and analyze data to support compliance reviews, audit activities, and regulatory reporting requirements.
• Document compliance processes and provide training, knowledge transfer, and handoff support to operational stakeholders.
  
  

Required Qualifications

• Minimum of 5 years of experience in IT compliance, SOX, audit, or regulatory control environments.
• Demonstrated experience with General IT Controls (GITC) including control identification, design, testing, and validation.
• Experience working with SAP CIS or similar enterprise Customer Information Systems.
• Hands-on experience with identity and access management and privileged access tools such as:
• SailPoint IdentityIQ (or equivalent)
• CyberArk (or equivalent)
• Knowledge of cloud-based identity, access, and change management controls.
• Strong analytical, documentation, and compliance assessment skills.
• Ability to effectively communicate complex compliance requirements to technical and business stakeholders.
  

Preferred Qualifications

• CISA (Certified Information Systems Auditor) certification or equivalent.
• Experience supporting large-scale transformation or capital project initiatives.
• Familiarity with regulatory compliance frameworks impacting utility or enterprise IT environments.
  
  

Soft Skills & Competencies

• Strong collaboration and stakeholder engagement skills.
• Excellent written and verbal communication abilities.
• Ability to work independently while contributing to team-based deliverables.
• Strong problem-solving, analytical thinking, and organizational skills.
• Ability to train and transfer knowledge to business and technical teams.
  
  

Work Environment

This role operates in a collaborative, hybrid work environment requiring periodic onsite presence, particularly during project travel weeks. The position involves both team collaboration and independent deliverable ownership.

Pay Rate Range

46 - 61 USD hourly