The Job logo



Financial Controls & Compliance Manager - (SOX IT Controls & Compliance)

ApplyJoin for More Updates

You must Sign In before continuing to the company website to apply.

What You'll Do

The right candidate will be responsible for supervising and assessing the internal control environment for Information Technology (IT) Controls to ensure compliance with various regulatory requirements. This includes Sarbanes Oxley Compliance, SOC (System and Organization Controls for Service Organizations), Data Privacy and Protection and other compliance standards impacting IT.

You will assist Cisco in optimizing control activities, organizational strategy, and policies and procedures. You’ll conduct transaction testing, perform readiness assessments, and leverage various technical Information Technology controls (e.g., databases, operating systems, data warehouses, and reporting tools) to help assess Cisco’s IT control environment.

You'll be part of a team responsible for crafting and updating process flows and control documentation, performing walkthroughs of controls, identifying and assessing the key controls that mitigate various compliance risks, perform testing of controls and document control deficiencies and communicate exceptions to Leadership. You should have a proven record of success with completing work you're doing related to the following:

  • Identifying key risks and controls, knowledge of Sarbanes Oxley readiness, controls optimization, including the configuration of controls around security, business process and within IT environments.
  • Collaborating with various IT departments and control owners to understand, assess and address financial (i.e., SOx) and other relevant operational and compliance risks and exposures.
  • Evaluating Information Technology General Computer Controls (ITGCs) for in-scope systems that support the company’s internal controls over financial reporting for both design and operating efficiency. Key domains of ITGC assessment include: change management, access to programs and data, computer operations and systems development.
  • Evaluating ITGCs over ERP systems including Oracle, SAP, Oracle Database, Web Development Tools, Unix, Linux and other relevant security technologies;
  • Evaluating relevant SOC1 and SOC2 reports to assess the control objectives, control activities and entity user control considers as they relate to the control environment.
  • Detailing the company’s evaluation of IT control deficiencies to resolve severity of the deficiencies and impact to the company’s internal controls over financial reporting based on PCAOB Auditing Standard No. 2201.
  • Supervising remediation activities relevant to any IT control deficiencies and follow-up on remediation and retesting of the controls as necessary;
  • Communicating and aligning on the nature, timing and extent of IT control testing with external auditors and share relevant control testing with external auditors for their use in the execution of their external audit.
  • Identifying and recommending changes to improve efficiency as well as process for IT key controls and process flow.
  • Conducting an analysis of internal policies, guidelines, procedures and processes to evaluate the accuracy and adequacy of internal controls, operations, and reporting impacting regulatory compliance requirements as needed.
  • Providing direction and support to the IT Controls Owners for the design, collection, analysis and reporting of financial and operational risk data.
  • Updating and maintain the IT control database; coordinate and facilitate the execution of control testing, review test work papers for quality and act as SME for key IT processes.
  • Participating with other Risk Management teams to identify current and emerging risk exposures and develop appropriate risk mitigation strategies related to IT; and
  • Conducting training sessions as needed with various IT organizations and IT control owners to communicate ongoing compliance requirements.

Who You'll Work With

You'll be part of the IT Financial Compliance & Operations (FCO) team. This team partners with the Business, IT, Risk Management and Internal Audit organizations to implement the IT Scope under a company-wide program for IT control compliance. This covers existing controls compliance and Control Readiness activities for prospective changes driven by key corporate critical initiatives.

The IT FCO team is also an advisor to the IT organization that includes a broad scope of IT Compliance initiatives. You will operate as a Strategic Partner with key collaborators to include Project Teams, IT Process Leads, IT Control owner community and IT leadership, external auditors, Business Process Teams and respective multi-functional organizations.

Who You Are

You are an organized, driven and motivated individual with excellent organization skills with attention to detail. You are an effective communicator with good communication skills with the ability to work with multi-functional teams. You have a natural curiosity to learn about new regulatory compliance or understand groundbreaking programs and problems tackle these in partnership with SMEs in Cisco to implement the right set of controls that mitigate IT compliance risks.

Our minimum requirements for this role:

  • BA/BS degree with a strong academic record
  • CPA or Certified Information Systems Auditor (CISA) license preferred.
  • Big 4 Accounting Experience preferred.
  • Public accounting Experience required.
  • Project Management Experience
  • 6+ years proven track record with an emphasis on evaluation of internal controls or operational risk in one or more of the following areas: IT Processes and General Controls, operational/enterprise risk management, audit, accounting, Sarbanes Oxley, Regulatory compliance or Resiliency & Business Continuity
Set alert for similar jobsFinancial Controls & Compliance Manager - (SOX IT Controls & Compliance) role in Bengaluru, India
Cisco Logo



Job Posted

10 months ago

Job Type




Experience Level

3-7 years




Bengaluru, Karnataka, India




Be an early applicant

Related Jobs

LSEG (London Stock Exchange Group) Logo

Associate Controls Testing, Financial Controls Team

LSEG (London Stock Exchange Group)

Bengaluru, Karnataka, India

Posted: 8 months ago

We are seeking a Senior Associate to join our Financial Controls team. Your main responsibility will be to perform testing of financial controls - design and implementation (D&I) and effectiveness. You will also work with control owners to identify, design, and evaluate internal controls. The role reports to the Senior Manager, Controls Testing, and involves collaborating with various teams including external auditors. Additionally, you will support the controls attestation process and contribute to process improvement and control optimization projects.

Cisco Logo

Business Systems Analyst - SOX Compliance


Bangalore Urban, Karnataka, India

Posted: 9 months ago

JOB DESCRIPTION What You'll Do You will be part of the Finance IT organization’s SOX Control Execution Team that helps ensure Cisco has a strong internal control environment and is SOX Compliant. You will be working on SOX compliance activities and initiatives through Agile practices, extensive cross-functional collaboration, business partnership, detailed planning, and flawless execution. SOX Compliance activities include providing support for Business/IT process walkthroughs, SOX control execution and providing testing support to the SOX and external Auditors. As a senior member on the team, you will provide guidance to junior team members on day to day work. In this position, you will be empowered to make a difference, establish a reputation and position yourself for continued growth. You will have exposure and opportunity to learn about the different business processes at Cisco.   Who You'll Work With Finance IT organization is a team of fun-loving and motivated individuals working on managing IT architecture, platforms, and engineering services for Cisco core financials area. We are working on some of the most sought-after technologies in the market today. If working on SOX compliance activities with exposure to Finance domain is what you have been looking for, with a passion for Service delivery management, then look no further! We are looking for the right candidate to fill in the senior role of Business System Analyst in the Finance IT organization’s SOX Control Execution team. This organization provides excellent opportunities to enhance your career in the latest tools & technologies the market has to offer. When you work with us, you’ll be part of a highly empowered collaborative team who's passionate about delivering unprecedented business transformation. You will work with business partners, Cisco’s outsourced partners and cross-functional teams.   Who you are The ideal candidate is a highly motivated self-starter who learns quickly. You possess excellent leadership, collaboration and interpersonal communication skills, with the ability to communicate effectively at varying levels and teams in Cisco’s organization. You are organized and pay high attention to details. Responsibilities include, but not limited to coordination, analysis, execution of SOX controls and compliance activities related to enterprise systems and applications to ensure Cisco is SOX compliant.   Responsible for leading and providing walkthroughs and testing support, execution, remediation, documentation, and reporting relating to SOX controls, including IT General Controls, Automated Controls, Interfaces, Reports, End-User Computing Controls, etc. Identify process improvement opportunities from control performance or testing and prepare recommendations; assist in assessing the impact of the gap on business and finance processes. Partner with the Finance SOX IT & SOX Business to coordinate and lead the design, implementation, and testing of IT general and automated system controls and configurations. Effectively and timely communicate SOX control execution and testing status and any potential SOX observations or concerns to management.  Track, monitor, and validate that any observations have been effectively remediated. Understand the various company policies and apply them to the analytics and investigations. Work on initiatives relating to SOX compliance such as the SOX Control Automation project to increase efficiencies and reduce manual errors. Providing guidance and train junior team members.   Minimum Requirements Bachelors’ Degree in the Accounting or Information Systems area with a strong academic record. 5+ years of working experience in the Compliance related area. CA, CPA, CISA, CISM and/or CIA or equivalent certifications preferred. Ability to work with Cross-functional teams and manage multiple deliverables. Strong leadership and analytical skills with proven ability to apply what you learned. Experience using Microsoft Office 365 applications, Jira Cloud and Jira Align. Knowledge of SQL language and Agile delivery model is a must. Experience with programming languages such as Python, Angular and Flask is a plus. Knowledge on Oracle ERP is a plus. Must be hands-on, with "roll up your sleeves" attitude to drive program success. Ability to multi-task, organize & manage workload effectively. Organized verbal and written business communication that effectively achieves business objectives. Ability to drive continuous improvements and operational excellence. Collaborative and open style with a constructive and positive attitude. Strong communication and interpersonal skills & ability to adapt to a changing environment. Message to applicants applying to work in the U.S.:   When available, the salary range posted for this position reflects the projected hiring range for new hire, full-time salaries in U.S. locations, not including equity or benefits. For non-sales roles the hiring ranges reflect base salary only; employees are also eligible to receive annual bonuses. Hiring ranges for sales positions include base and incentive compensation target. Individual pay is determined by the candidate's hiring location and additional factors, including but not limited to skillset, experience, and relevant education, certifications, or training. Applicants may not be eligible for the full salary range based on their U.S. hiring location. The recruiter can share more details about compensation for the role in your location during the hiring process. U.S. employees have access to quality medical, dental and vision insurance, a 401(k) plan with a Cisco matching contribution, short and long-term disability coverage, basic life insurance and numerous wellbeing offerings. Employees receive up to twelve paid holidays per calendar year, which includes one floating holiday, plus a day off for their birthday. Employees accrue up to 20 days of Paid Time Off (PTO) each year and have access to paid time away to deal with critical or emergency issues without tapping into their PTO. We offer additional paid time to volunteer and give back to the community. Employees are also able to purchase company stock through our Employee Stock Purchase Program. Employees on sales plans earn performance-based incentive pay on top of their base salary, which is split between quota and non-quota components. For quota-based incentive pay, Cisco pays at the standard rate of 1% of incentive target for each 1% revenue attainment against the quota up to 100%. Once performance exceeds 100% quota attainment, incentive rates may increase up to five times the standard rate with no cap on incentive compensation. For non-quota-based sales performance elements such as strategic sales objectives, Cisco may pay up to 125% of target. Cisco sales plans do not have a minimum threshold of performance for sales incentive compensation to be paid.

ISG (Information Services Group) Logo

SOX Audit and Compliance - Analyst / Senior Analyst

ISG (Information Services Group)

Bengaluru, Karnataka, India

Posted: 7 months ago

Job description  This role will provide support to the SOX Audit and internal Audit function of the company.   Essential Duties Support and facilitate the SOX compliance Understanding existing controls, identifying gaps in the current control environment and recommending additional controls to mitigate the open risks. Performing internal audits, process reviews, SOP documentation and review of policies and procedures  Assist in preparing risk assessment, audit plan programs, working papers, and internal audit reports  Assist seniors & managers in developing new methodologies and internal initiatives. Understanding existing controls, identifying gaps in the current control environment and recommending additional controls to mitigate the open risks Contribute to the development of audit processes improvements. Use knowledge of the current environment and industry trends to identify potential audit issues   Minimum Qualifications Education Qualified Chartered Accountant Experience 2-4 years’ experience preferably Internal Audits, SOX testing or Statutory Audits.  Work Skills Exhibit and promote good personal and professional ethics. Strong knowledge of accounting concepts and process/controls related to Revenue, Financial close and Reporting, Order to Cash, Procure to Pay, Treasury, Tax, HR Payroll, etc. Working knowledge of General IT control concepts is a plus, but not mandatory. Ability to support high-caliber SOX controls testing and other internal control initiatives. Ability to work independently, deliver high quality output under time pressure and prioritize competing workloads. Strong problem solving & organization skills. Excellent communication skills Demonstrated experience of working well in small teams


Digital Trust IT Audit Assistant Manager


Bengaluru, Karnataka, India

Posted: 10 months ago

JOB DESCRIPTION OVERVIEW KPMG in India, a professional services firm, is the Indian member firm affiliated with KPMG International and was established in September 1993. Our professionals leverage the global network of firms, providing detailed knowledge of local laws, regulations, markets, and competition. KPMG has offices across India in Ahmedabad, Bengaluru, Chandigarh, Chennai, Gurugram, Hyderabad, Jaipur, Kochi, Kolkata, Mumbai, Noida, Pune, and Vadodara.  KPMG in India offers services to national and international clients in India across sectors. We strive to provide rapid, performance-based, industry-focussed, and technology-enabled services, which reflect a shared knowledge of global and local industries and our experience of the Indian business environment KPMG Advisory professionals provide advice and assistance to enable companies, intermediaries, and public sector bodies to mitigate risk, improve performance, and create value. KPMG firms provide a wide range of Risk Advisory and Financial Advisory Services that can help clients respond to immediate needs as well as put in place the strategies for the longer term. Projects in IT Advisory focus on the assessment and/or evaluation of IT systems and the mitigation of IT-related business risks. They are either IS audit, SOX reviews, Internal audit engagements, IT infrastructure review and/or risk advisory including but not limited to IT audit supports in nature.  Equal Opportunity Employer (EOE) KPMG India has a policy of providing equal opportunity for all applicants and employees regardless of their color, caste, religion, age, sex/gender, national origin, citizenship, sexual orientation, gender identity or expression, disability or other legally protected status. KPMG India values diversity and we request you to submit the details below to support us in our endeavor for diversity. Providing the below information is voluntary and refusal to submit such information will not be prejudicial to you. Skills Required: Risk Based IT Internal Audit for Financial Services Entities IT SOX 404 Controls Testing, Quality Assurance Internal Financial Controls related to IT General Controls as part of Financial Statements Audits IT Risk & Control Self-Assessment  Business Systems Controls / IT Application Controls  Auditing Emerging Technologies such as Cloud Security, Intelligent Automation, RPA, IoT etc. Working knowledge of programming languages(C/C++/Java/SQL) RESPONSIBILITIES Responsibilities Collaborate with other members of the engagement team to plan the engagement and develop relevant workpapers/deliverables.  Perform fieldwork and share the daily progress of fieldwork, informing supervisors of engagement status. Perform testing of IT Application Controls, IPE, and Interface Controls through code reviews, IT General Controls review covering areas such as Change Management, Access Management, Backup Management, Incident and Problem Management, SDLC, Data Migration, Batch Job scheduling/monitoring and Business Continuity and Disaster Recovery Perform Risk Assessment, identification, and Evaluation of Controls, prepare process flow diagrams and document the same in Risk & Control Matrix.  Perform business process walkthrough and controls testing for IT Audits. Performing planning and executing audits, including:  Information Security reviews  Information Technology Infrastructure reviews  Application reviews  Use knowledge of the current IT environment and industry IT trends to identify the engagement and client service issues and communicate this information to the project manager. Maintain relationships with client management and the project Manager to manage expectations of service, including work products, timing, and deliverables. Demonstrate a thorough understanding of complex information systems and apply it to client situations.  Use extensive knowledge of the client's business/industry to identify technological developments and evaluate impacts on the work to be performed. Coordinate effectively and efficiently with the Engagement manager and the client management keeping both constantly updated regarding project’s progress. Monitoring and Tracking for Budget and Time Estimates on engagements. Conducting IT audits, IT Internal Audit, Robotics Process Automation (RPA) Audits Conducting SOX audits, Third Party Security audits  Conducting controls assessment in manual/ automated environment Information Security Assessments Conducting OS/DB/Network reviews Prepare/Review of Policies, Procedures, SOPs QUALIFICATIONS A Bachelor's degree in engineering and approximately 2 -6 years of related work experience; or a master’s or MBA degree in business, computer science, information systems, engineering Expertise in coding skills (e.g., Java, C++, C, SQL, Oracle) Experience in performing IT audits of banking/financial sector applications Good to have knowledge of other IT regulations, standards and benchmarks used by the IT industry (e.g., NIST, PCI-DSS, ITIL, OWASP, SOX, COBIT, SSAE18/ISAE 3402 etc.) Technical Knowledge of IT Audit Tools Experience in carrying out OS/DB/Network reviews Exposure to Risk Management and Governance Frameworks/ Systems will be an added advantage  Exposure to ERP systems will be added advantage Experience in performing technical code reviews (understanding code logic based on business requirement)Strong project management, communication (written and verbal) and presentation skills A team player Strong self-directed work habits, exhibiting initiative, drive, creativity, maturity, self-assurance, and professionalism Preferred Certifications – CISA/CISSP//CISM Exposure to automation Data Analytics tools such as QlikView/Qlik sense, ACL, Power BI will be an advantage Proficiency with Microsoft Word, Excel, Visio, and other MS Office tools