The Global IT Compliance Manager performs comprehensive reviews of IT processes to ensure appropriate controls and procedures are in place and operating effectively. The Global IT Compliance Manager plays a key role in the execution of the IT SOX Program and other compliance programs, such as Systems and Organizations Controls (SOC) 2. This role also makes recommendations to various levels of Management for enhancing processes and controls and improving documentation to meet SOX and other compliance requirements. The Global  IT Compliance Manager requires strong leadership and communication capabilities and will be a critical point of contact with IT leadership. Forming strong relationships with IT business partners and fostering a collaborative environment are critical to success in this role. The Global IT Compliance Manager will serve as the primary contact for the external auditors and coordinate IT SOX and other IT compliance efforts between process and control owners, testers and other stakeholders.

Specific responsibility includes, but are not limited to:

IT Compliance Coordination

• Overall guidance, training and implementation of IT SOX and other compliance policies and procedures.
• Keep aware of all applicable laws and regulations and the corresponding level of IT compliance. 
• Provide input to align IT policies, standards and procedures in response to compliance requirements and to efficiently manage the risks of non-compliance.
• Partner with Finance and external auditors to help coordinate the annual auditing process.
• Work with process owners and testers to ensure controls are well defined and in compliance with applicable laws and regulations.
• Coordinate the execution of SOX and other compliance programs (i.e. SOC 2), including planning and coordinating walkthroughs, testing of IT general controls, application controls, and key system generated reports. 
• Collaborate with IT partners to identify areas where control enhancements and/or documentation improvements are needed. Help process owners prepare dashboards providing information on the progress with the annual learning process.
• Research and assess deficiencies identified and work with Management to identify an appropriate solution. Follow-up on remediation activities to verify appropriate resolution.
• Manage communication with external auditors and serve as a liaison between external audit and IT.
• Evaluate and ensure remediation of identified control deficiencies in a timely manner. Also, for SOX and other control failures, ensure that proper impact analysis has been performed. 
• Review system implementations to assess risks and potential impact on key SOX controls.
• Plan and perform compliance audits in areas of high risk.
• Assist in the preparation of executive presentations in recurring Steering Committee meetings.

Internal Audit and IT Risk Coordination

• Partner with Internal Audit and process owners on outstanding internal audit (non-SOX related) 
• Coordinate, track, and manage open IT risk findings and remediation with stakeholders.
• Evaluate and ensure that internal audit findings are properly addressed to prevent any risks and future findings

• Bachelor’s degree in Computer Science, Information Technology, finance or accounting, similar field, or equivalent experience.
• 5+ years in internal or external auditing, with emphasis on IT auditing, preferably with larger companies having complex IT environments or large accounting firms.
• A detailed understanding of the general computer control areas and the IT governance framework (COBIT), Sarbanes Oxley, and the COSO framework.
• Experience with evaluating security and controls on various on-premise and cloud-based technologies 
• Strong ability to understand, assess and prioritize risks across the components of the IT environment (application, operating system, and database).
• Demonstrates excellent oral, presentation and written communication skills, and can communicate effectively within different layers of organizations
• CISA or CIA or CISR or CPA preferred.

The salary range for this position is $100,000 -$150,000 / year.
The hiring base salary range above represents what Avery Dennison reasonably expects to pay for this position as of the date of this posting. Actual salaries will vary within the range, and in some circumstances may be above or below the range, based on various factors including but not limited to a candidate’s relevant skills, experience, education and training, and location, as well as the job scope and complexity, responsibilities, and regular and/or necessary travel required for the position, which may change depending on the candidate pool. Avery Dennison reserves the right to modify this information at any time, subject to applicable law.  

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability, protected veteran status, or other protected status. EEOE/M/F/Vet/Disabled. All your information will be kept confidential according to EEO guidelines.

Reasonable Accommodations Notice

If you require accommodations to view or apply for a job, alternative methods are available to submit an application. Please contact (440) 534-6000 or NA.TA.Operations@averydennison.com to discuss reasonable accommodations.