Google→
Program Manager I, SOX Controls Governance, CISO
Entry LevelOn-site
Location
New York, NY
Salary
$105k–$151k/yr
Experience
Not specified
Posted
2 months ago
Skills
sox complianceit general controlsprogram managementcisa certificationcism certificationcrisc certificationcissp certificationnistisopci dsssoctechnical problem-solvingissue resolutionit riskevaluate controls
Job Description
Summary: Google is a leading technology company that builds products to create opportunities for everyone. As a Program Manager in the Cloud Controls Governance team, you will lead multi-disciplinary projects focusing on Sarbanes-Oxley (SOX) readiness for Google Cloud, ensuring the effectiveness of internal controls and facilitating compliance processes.
Responsibilities:
- Lead control development and enhancement efforts, including identifying and educating control owners, defining requirements, assessing maturity and effectiveness, and proposing integrations into continuous monitoring dashboards
- Collaborate with compliance program teams in readiness activities for upcoming certifications, audits or customer requests for information (RFIs)
- Manage a program portfolio by driving multi-quarter roadmaps, leading new project initiation (scoping, objectives), and tracking execution (milestones, dependencies, risks)
- Detect control gaps or maturity issues and drive the remediation of internal findings to ensure compliance before official audits commence
- Develop and maintain working relationships with key internal stakeholders and subject matter experts across multiple functions and locations to effectively accomplish goals
Required Qualifications:
- Bachelor's degree or equivalent practical experience
- 1 year of program management experience
- Experience in technology risk, compliance, audit, and controls governance focusing on Sarbanes Oxley (SOX)
- Experience in IT General controls for SOX including user access security, change management, backup recovery and job scheduling
Preferred Qualifications:
- Master's degree or equivalent practical experience
- Active professional certification of CISA, CISM, CRISC, CGEIT (all ISACA), CISSP, CGRC, CCSP (all ISC2), or CIPP (IAPP)
- Knowledge of regulatory and non regulatory framework (NIST, ISO, PCI DSS, SOC, etc.)
- Understanding of IT risk, how it relates to business risk with the ability to evaluate control effectiveness
- Ability to use technical problem-solving and issue resolution within ambiguous or highly complex environments
Required Skills: SOX compliance, IT General controls, Program management
Important Skills: CISA certification, CISM certification, CRISC certification, CISSP certification, NIST, ISO, PCI DSS, SOC
Nice-to-Have Skills: Technical problem-solving, Issue resolution, IT risk, evaluate controls
Benefits: Bonus, Equity, Benefits
Benefits
Bonus
Equity
Benefits