Apply for this job now

Director, Global IT SOX Assurance- REMOTE

Richmond, Virginia
Job Type
21 Jul 2022
Director, Global IT SOX Assurance- REMOTE

Job ID




Service line

Corporate Segment

Role type


Areas of Interest



Dallas - Texas - United States of America, Remote - US - Remote - US - United States of America


Reporting to the Senior Director, Global IT SOX, the Director, Global IT SOX will provide critical global leadership for IT general controls and related IT dependencies (e.g., automated controls, key reports, interfaces, segregation of duties and restricted access). S/he should have an understanding of benchmarking / baselining strategies and methodologies related to key reports and automated controls. S/he will ensure further enhancement of the companys financial reporting control framework in close cooperation with IT leaders, business and major assurance stakeholders. Furthermore, this individual will be responsible for reporting to internal and external stakeholders as to the effectiveness of ITGC and related IT dependencies.


Supports the Senior Director, Global IT SOX with the development of audit methodology, policy and procedures aligned with the IIA and PCAOB standards and guidance related to IT General Controls and related IT dependencies; management of Global IT SOX teams activities; and preparation of various reporting to key stakeholders (e.g., business, finance, IT, and external auditors).

Maintains a current understanding of CBREs strategic initiatives, policies, and procedures (including operating systems, networks, and application processing environments and information security issues), as well as industry leading-practices" and emerging trends of the IT and Security control environments in order to assess how these may impact Global SOXs IT and Security-related audit activities.

Participates in the development of the annual audit plan utilizing a risk-based approach, including the implementation and utilization of emerging technologies (e.g., Future of Controls).

Plans, executes, and reports on IT and Security-related controls, including deficiency management and remediation process.

Responsible for leading, mentoring and managing staff, including hiring, goal setting, planning and delegation of work, training and development, coaching, and conducts annual performance reviews with established deadlines.

Oversees IT staff/independent consultants/outsourced provider and manages IT Global SOX program, to include the review of walkthroughs and testing of operating effectiveness of controls, and reporting.

Serves as a key advisor to the business and IT through business transformations (e.g., system implementations, significant upgrades, process re-design including the identification of risks and design and implementation of relevant business processes and controls with a focus on increased automation.

Facilitates a work environment that fosters and supports ethical decision-making and actions by motivating, promoting, and modeling ethical behavior, as well as executing job responsibilities in accordance with CBREs core values, ethics, and policies and procedures.

Coordinates IT and Security-related activities with external auditors and assures maximum reliance on work performed.

Ensures the overall quality, consistency, risk management and adherence to IA policies and procedures, IIA Standards, and regulatory requirements.

Sustains professional and technical knowledge with the idea of expanding this knowledge, personal growth, and development through continuing professional education efforts. The increased knowledge may occur through attendance at external trainings, seminars, webinars, conferences, as well as reviewing professional publications, establishing personal networks, and participating in professional organizations.

Ensure adherence to principles, policies, and standards and improve quality and process reliability in a cost-effective manner. Facilitate communications, problem resolution, and provide appropriate feedback, both positive and corrective, within the team.

Foster a long-term results-orientation and business partner mindset within the SOX team.


Provides formal supervision to individual employees within single functional or operational area. Approves subordinate's recommendations for staff recruitment, selection, promotion, advancement, corrective action and termination. Effectively recommends same for direct reports to next level management for review and approval. Plans and monitors appropriate staffing levels and utilization of labor, including overtime. Prepares and delivers performance appraisal for staff. Mentors and coaches team members to further develop competencies. Leads by example and models behaviors that are consistent with the company's values.


Specific experience and qualifications will include, but not be limited to the following:

10+ years demonstrated knowledge, skills, and expertise in the specialized field of IT auditing including, but not limited to, IT governance, IT general controls, IT project management, IT infrastructure management, software development lifecycle, application security, emerging information security and cybersecurity risk, process automation, cloud architecture and controls related to applications hosted in the cloud, data lifecycle management, data privacy, disaster recovery and business resumption, and other technology risks, and as well as IT infrastructure including databases, networks, and operating systems.

Expertise in auditing concepts, approaches, tools and techniques; risks and controls; IT and Security concepts, standards, frameworks, and best practices.

Experience leading end-to-end IT and Information Security (IS) related engagements and serving as a primary liaison for the Global SOX Department when dealing with external auditors and regulatory agencies on IT and IS-related audit activities.

Comprehensive knowledge and experience in developing IT and IS risk-based audit work programs and performing risk-based auditing with strong project management skills required

Demonstrated knowledge of internal controls frameworks (i.e., SOX, COSO, COBIT, NIST CSF, ITIL, etc.), applicable regulatory requirements and identification of emerging IT and IS related risks (i.e., Cloud Computing, Data Analytics, etc.).

Strong verbal and written communication skills with a demonstrated ability to articulate effectively and professionally with all levels of management and Internal Audit personnel as well as external auditor.

Must be a team player. Ability to multi-task, prioritize, and dive into the details where appropriate.

Knowledge of leading internal control and risk management practices and standards and the ability to perform detailed risk assessments.

Demonstrated leadership ability.

Ability to work at all levels of organizations, as well as to develop and to maintain effective working relationships with others, to include senior management and Executive Leadership.

Possess professional expertise as well as strong analytical and technical skills to evaluate highly complex and diverse IT systems while maintaining the ability to understand and relate to the risks to the organization's overall enterprise risk profile.

In practicing data analysis, experience using computer-assisted audit techniques, a plus.

Strong proficiency in the Microsoft Office Suite of products (especially Word, Excel, PowerPoint).

High ethical standards with ability to handle confidential / sensitive issues and information with the highest degree of professional responsibility.

ERP experience. PeopleSoft and MS Dynamics preferred.

Experience leading audit related activities for new/upgraded system implementations (e.g., testing and defect management strategies, data conversion, transition of systems or processes)

Experience navigating and leading in environments of transformation, change and disruption; Prior experience driving teams through transformation / M&A preferred.

Experience facilitating training and awareness relating to SOX initiatives and compliance on a global basis.

Strong executive presence. Simplifies the complex. Able to balance strategic decision making with the ability to do the work" and get his or her hands dirty.


Leading Innovation & Change and Digital Agility - brings a point of view on the new and different, leveraging technology and new digital leadership techniques, and possesses the ability to create a vision, roadmap, and execute on desired path forward.

Strong Leadership Capabilities - demonstrate strong leadership skills across the enterprise, not just the accounting organization.

Communications Skills - communicate effectively across all company constituencies, express complex company issues as simply as possible.

Organizational Influence - be a practical, collaborative, and influential figure within the firm, working across businesses and functions. Invest time and resources to establish strong relationships and be a strong team player" on the leadership team. Operate comfortably in a complex matrix" environment.

Hands On" Leader - work practically and do hard things well with speed and urgency. Operate effectively in a lean organization, with a bias for action.

Ethics - drive an ethical culture, earning the confidence of the Companys constituencies..... click apply for full job details
Apply for this job now


  • Job Reference: 663175970-2
  • Date Posted: 21 July 2022
  • Recruiter: CBRE
  • Location: Richmond, Virginia
  • Salary: On Application
  • Sector: I.T. & Communications
  • Job Type: Permanent