Role Summary
The IT Internal Controls Consultant supports IT SOX compliance, audit readiness, and access governance activities across enterprise systems. This role partners with IT, Security, and Audit teams to execute IT General Controls, user access reviews, and audit support activities in a regulated environment.
Key Responsibilities
* Support IT SOX audits by coordinating evidence, responding to auditor inquiries, and tracking remediation actions
* Perform periodic user access reviews, including access validation, Active Directory status checks, and remediation follow‑ups
* Assist with SAP Change Management and SAP GRC reviews, including transport validation, CAB approvals, and sensitive access reviews
* Support third‑party/SaaS audit requests, including SOC‑related inquiries and standard report confirmations
* Coordinate AuditBoard access for internal stakeholders and external auditors
* Support IT General Controls documentation, including access controls and incident response evidence
* Assist with control automation and process improvement initiatives to reduce manual audit effort
* Contribute to project and audit status reporting for leadership and audit stakeholders
Required Skills & Qualifications
* Experience supporting IT SOX, ITGCs, or technology risk/compliance
* Strong understanding of user access controls and segregation of duties
* Exposure to SAP, SAP GRC, or ERP environments preferred
* Familiarity with AuditBoard or similar GRC tools
* Strong communication skills and ability to work with US & EU based teams
Preferred Qualifications
* CISA certification (or in progress) – strongly preferred
* Experience supporting external auditors (Big 4)
* Prior experience in regulated industries (Life Sciences, Pharma, Healthcare)
Pay Rate: Up to $20/hour