Director, Internal Controls & SOX
ConfluentFull Time
Expert & Leadership (9+ years)
Candidates must possess at least 6 years of progressive experience in SOX IT compliance, IT risk assessment, and internal controls testing, preferably in FinTech or technology-driven industries. Proficiency is required in managing end-to-end SOX ITGC, SOC1 reviews, key reports, and automated control testing cycles, with deep expertise in Identity and Access Management (IAM), Change Management, Backup/Recovery, and IT Operations across various system types, including cloud-native environments. Familiarity with evaluating control effectiveness in cloud-based platforms like AWS or Azure and DevOps pipelines is essential, along with a strong understanding of frameworks such as COSO, COBIT, and NIST. Excellent communication and program management skills are necessary to translate technical risks into actionable insights for senior leadership and cross-functional teams. Professional certifications like CISA, CISM, CIA, or CISSP are considered advantageous.
The Technology Internal Audit Manager will lead the execution of the SOX IT compliance program, including scoping, planning, execution, and documentation of ITGC testing for critical financial systems. This role involves assessing the design and operating effectiveness of SOX-relevant IT controls against PCAOB standards and frameworks like COSO and COBIT. Responsibilities include collaborating with IT, Security, Engineering, and Finance teams to validate control ownership, assess risks, identify emerging technologies, and drive remediation of deficiencies. The manager will identify risks in areas such as change management, access provisioning, IT operations, system development, and third-party hosted environments, particularly in cloud and DevOps settings. Key duties also include coordinating with external auditors, providing executive-ready reporting on control effectiveness and findings, and driving continuous improvement of the SOX IT program through automation and enhanced compliance capabilities.
Card issuing and payment processing solutions
Marqeta provides modern card issuing and payment processing solutions in the fintech sector. Its platform allows businesses to create, issue, and manage payment cards tailored to their specific needs, such as expense management and consumer payments. The service operates through an open API, enabling clients to integrate Marqeta's capabilities into their own applications. This flexibility sets Marqeta apart from competitors, as it caters to a diverse range of clients, including financial institutions and tech companies. The company generates revenue primarily through transaction fees each time a card is used, along with potential setup and service fees. Marqeta's ability to quickly adapt to the growing demand for digital payments, especially during the COVID-19 pandemic, has contributed to its significant presence in the market.