Senior Analyst, IT SOX PMO

The role:

The Sarbanes-Oxley (SOX) Program Management Office (PMO) at SoFi, is part of the Controllership and is responsible for ensuring the company has the necessary internal control and assessment elements in place to meet the SOX requirements. The PMO facilitates risk assessment and scoping to determine project scope of each reporting year, and prepares the internal control assessment plan and accompanying timelines, scheduling and process walkthroughs. From the walkthroughs, the team oversees the updating of control descriptions and process flowcharts, and oversees the formalization and remediation of current and prior-year control deficiencies. The SOX PMO meets with external auditors as necessary to provide status updates and remediation efforts of ongoing work. The SOX PMO manages the SOC1 audits and associated reporting executed by our service auditors. Additionally, the SOX PMO team partners with the business to provide internal control over financial reporting associated with emerging areas/products, mergers and acquisitions and conducts SOX Readiness assessments, inclusive of creating the Risk and Control matrices and flowcharts.

The Senior Analyst, IT SOX PMO responsibilities include, but are not limited to, supporting the Technology and Engineering, Product & Design (IT/EPD) related components of SoFi’s Corporate SOX Program, and assisting the Senior Manager, IT SOX PMO as an advisor to the lines of business across SoFi Technologies and its subsidiaries.  SoFi’s fast pace of growth provides career development (e.g., work directly with senior and executive management) and learning opportunities (e.g., new system implementations) considering the role's enterprise-wide exposure.

The Senior Analyst, IT SOX PMO will report to the Senior Manager, IT SOX PMO, and will work with a mix of direct, indirect, and external team members to manage and execute the program. The Senior Analyst, IT SOX PMO will work closely with Technology and Finance Liaisons to ensure that Internal Controls Over Financial Reporting (ICFR) for SoFi Technologies and its subsidiaries, are appropriately designed and are operating effectively, SOX compliant control documentation is maintained and any deficiencies identified are assessed for severity, remediated, and reported to the appropriate governance authorities. In addition, the Senior Analyst, IT SOX PMO will be involved in special projects including implementations related to new systems and new accounting standards while assessing the impact on the company's ICFR.  The Senior Analyst, IT SOX PMO, will also assist with the execution of the company’s system and organization control (SOC) reporting program objectives. 

What you’ll do: 

• Work closely with the Senior Manager, IT SOX PMO, and the Business Process (BP) SOX PMO team in completing the annual SOX scoping and risk assessment (with a quarterly refresh), as well as support the annual Fraud Risk Assessment project, to ensure compliance with COSO standards and appropriate scoping and coverage of the SOX Program.
• Assist with the SOX 404 and 302 Certification process for Technology-related areas
• Coordinate with the lines of business teams, facilitate controls walkthroughs and testing, and lead deficiency evaluations/reporting and monitor remediation activities.
• Identify opportunities to improve the SOX program by becoming more efficient and effective through optimization and automation.
• Monitor IT SOX testing with the identification and documentation of IT SOX Controls in coordination with the SOX PMO BP team. 
• Assist the business in enhancing documentation, inclusive of the Risk and Control Matrix and accompanying process flowcharts.
• Support evaluation of ICFR deficiencies and monitor remediation activities in order to conclude on the effectiveness of ICFR.
• Work directly with SoFi's external auditors to ensure the SOX Program meets their requirements in terms of scope, timing and approach; be a key contact for the external auditors related to Technology SOX matters.
• Partner with different members of the SOX PMO team in the execution of special projects impacting the SOX program, including but not limited to new systems implementations. 
• Assist with oversight and execution of the company’s SOC 1 Report assessments across the lines of business.
• Work closely with the SOC 1 auditors to oversee SoFi’s SOC 1 audit and reporting program.
• Partner with the SOX Testing Team to ensure workpapers meet the quality, consistency, risk management and adherence to the Corporate SOX Policy.
• Advise the team as a Subject Matter Expert on Technology SOX controls (e.g., ITGCs, ITACs, SOC 1), COSO compliance, ICFR best practices, and the continuous enhancement of PMO's workflow processes.
• Build internal reputation as a management consultant and internal controls expert by building and maintaining ongoing relationships with the various lines of business included in the company's SOX process.
• Responsibilities also include the following: 1) adhering to and complying with all applicable, federal and state laws, regulations and guidance 2) adhering to company policies and procedures, 3) completing required training.

What you’ll need:

• Education: Completed Bachelor's Degree in Accounting, Information Systems Management, Finance
• 5 or more years of IT SOX related experience (with 2 or more years in a supervisory role). Should have in-depth knowledge focused on IT SOX, IT general controls (ITGCs), IT application controls (ITACs), ICFR, COSO Framework, and baseline understanding of business risks and controls.
• CISA certification or equivalent (e.g., CPA/CIA or other relevant certification), required
• Practical and deep knowledge of SOX and COSO
• Driven by Excellence - you are driven by our SoFi mission and our passion for member and client success which means you relentlessly pursue excellence; you do not tolerate mediocrity and you work intensely to achieve your goals
• High Integrity - you seek open and honest communication, and you hold yourself to very high moral and ethical standards, especially in handling confidential information.
• Apply knowledge and skills to resolve a wide range of issues in creative ways
• Excel at failing fast to learn, iterate and innovate
• Ability to independently navigate within an ambiguous environment with minimal instruction and limited oversight on routine work and projects
• Use data to get to the truth and make principle-based decisions
• Ability to prioritize workloads and ensure deadlines are consistently met, and to adapt to shifting priorities and communicate such modifications to partners
• Strong project management skills and organizing ability with experience proactively running after and solving problems of diverse and complex scope
• Builds trust with cross-functional stakeholders by taking time to understand their needs and tailoring solutions
• Sets ambitious goals based on problems that need to be solved and holds yourself accountable
• Embodies the SoFi Way: a founder, problem solver and partner in everything you do

Nice to have:

• Public Accounting Firm IT Audit experience is strongly preferred
• Working knowledge of US GAAP
• Prefer FinTech, banking and/or financial services experience primarily focused on SOX or IT enterprise-wide risk management and ICFR controls consulting