Risk, Internal Auditor and IT SOX Analyst

We are seeking an IT SOX Auditor to join our Risk, Internal Audit and SOX Compliance team. This is an exciting opportunity for someone to lead and shape our IT audit as we are looking to transition some IT testing away from our external co-source partner and bring this in-house. The successful candidate will be responsible for: * Ensuring ongoing compliance with the requirements of SOX across Formula 1, with a specialism in IT processes * Supporting our Enterprise Risk Management programme by assisting in developing/maintaining risk registers and ongoing assessment processes * Performance of Internal Audit reviews to provide independent assurance that the business’ risk management, governance and internal control processes are operating effectively Main Duties and Responsibilities: * IT Scoping: Conduct annual scoping exercises to determine the SOX scope of IT applications and tools * Control Evaluation: Test the design and operational effectiveness of IT controls. Assist with the testing of other non-IT SOX controls as necessary. * Control findings: Prepare detailed audit documentation and reports, highlighting findings and recommendations. Lead root cause analysis assessments to identify causes of deficiencies and provide solutions to problems identified. Support the business with remediation activities. * Continuous Improvement: Stay updated with emerging technologies and best practices in IT auditing and compliance. Be confident in giving an opinion and driving change where processes can be improved. * Collaboration: Work closely with IT, Cyber Security and business teams to ensure compliance with SOX and other regulatory requirements. * Project Management: Work with our co-source partner to run a seamless IT audit, including the transition of certain controls in-house. Manage the relationship with the IT external auditors to ensure a smooth audit process. * Risk Assessment: Identify and evaluate IT-related risks and recommend mitigation strategies. Support on wider operational risk assessments. * Conduct other IA Audits: Support on other IA work, which could have an IT focus e.g. ISO 27001, or could be more operational in nature. * Training: Providing SOX training, with an IT focus, to members of the business as needed Knowledge & Skills: * Educated to degree level or equivalent * Preferably a qualified accountant, CIA or equivalent IT qualification * Experience of working in an Audit setting – External or Internal Audit * Experience of PCAOB audits or working for a FPI or US Listed Company * Experience of IT General Controls and IT audits is essential * Experience of working with Microsoft Dynamics, AD and Cloud environments is preferable * Experience of Risk Management would be beneficial * Strong project management skills * Exceptional communication skills (written and verbal) * Excellent and insightful analytical skills. * Experience of SQL, Synapse, data querying * Excellent business acumen (e.g., knowledge of business drivers, findings solutions and knowledge of accounting, finance, and other business areas) * Proficient with the use of Microsoft Office, including Excel * Knowledge of relevant compliance regulations – PCI-DSS, GDPR, SOX, ISO 27001 standards * Ability to work with a high level of integrity and confidentiality