Original listing text, shown exactly as published by the company.
Key Responsibilities include
- IT Controls Ownership:
- Lead the IT controls component of the SOX program, including managing the identification and evaluation of IT processes and risks.
- Design and assess IT controls to support ICFR, such as access management, change management, and IT operations controls.
- SOX Compliance:
- Ensure IT controls comply with SOX requirements while staying aligned with COSO and PCAOB standards.
- Work with IT and finance stakeholders to resolve control deficiencies and drive remediation efforts in a timely and efficient manner.
- Collaboration with IT and Audit Partners:
- Partner with IT teams to implement, document, and maintain effective IT controls.
- Collaborate with internal and external auditors to coordinate audit schedules, provide evidence, and address IT audit findings.
- Risk Management and Process Improvement:
- Perform periodic risk assessments related to IT processes and evaluate the impacts of system implementations or changes on the control environment.
- Identify opportunities to automate IT controls and improve process efficiency.
- Testing and Reporting:
- Oversee testing efforts for IT controls and collaborate on reporting outcomes to SOX leadership, executive management, and the Audit Committee.
- Provide recommendations to address identified issues and ensure robust controls are in place.
- Influence and Partnership:
- Operate as a subject matter expert and trusted compliance partner to Engineering-aligned associates, providing SOX guidance and coaching without direct management authority.
- Influence without authority — driving alignment, building trust, and moving the program forward across teams that do not report to you.
- Bring structure and rigor to a complex, cross-functional program — maintaining clear plans, owners, and timelines across Engineering, Finance, and external audit partners.
About You
Minimum Qualifications
- Bachelor's degree in Information Technology, Accounting, or a related field; relevant certifications such as CISA, CISSP, or CPA preferred.
- 10+ years of experience in IT audit, SOX compliance, or risk management with a focus on IT controls, preferably in a publicly traded company or Big Four public accounting firm.
- Demonstrated expertise in identifying, designing, and testing IT controls to support compliance standards.
- Deep knowledge of SOX 404, COSO framework, COBIT principles, IT security, and risk management practices.
- Hands-on experience with IT controls domains including access management, change management, and disaster recovery.
- Proven ability to earn the trust of engineering teams and communicate technical risks and control concepts in plain language — to engineers, senior executives, and audit committees alike.
- Experience working in or alongside high-velocity engineering organizations at a technology company.
Preferred Qualifications
- Advanced degree (MBA, MIS, or equivalent) is a plus.
- Experience managing IT SOX efforts for ERP systems such as Oracle, SAP, or Workday.
- Familiarity with cloud-based environments (AWS, Azure, GCP) and related control implications.
- Prior experience in an embedded or liaison role between compliance and engineering functions.
- Strong project management and organizational skills with a results-oriented approach.
#LI-Remote
Instacart provides highly market-competitive compensation and benefits in each location where our employees work. This role is remote and the base pay range for a successful candidate is dependent on their permanent work location. Please review our Flex First remote work policy here.
Offers may vary based on many factors, such as candidate experience and skills required for the role. Additionally, this role is eligible for a new hire equity grant as well as annual refresh grants. Please read more about our benefits offerings here.…
