Engagement Manager, Internal Audit (SOX) (Night Shift)

***Note: This position is open to applicants based in the Philippines only.

In the application form, please select:

• Engagement Manager, Internal Audit (SOX) (Night Shift)

1:00 AM - 10:00 AM, Tuesday to Saturday

DUTIES AND RESPONSIBILITIES

This position is responsible for the following:

1. Leads end-to-end internal audit and SOX 404 engagements with a primary focus on business process controls. This role is responsible for executing first-year and ongoing SOX programs, performing financial statement risk assessment and scoping, developing high-quality SOX documentation (RACMs, narratives, flowcharts), leading walkthroughs, identifying control gaps, evaluating deficiencies, and driving practical remediation.

2. Serve as the primary day‑to‑day contact for client management on internal audit matters; supervise and develop engagement teams; and contribute to engagement planning, execution, reporting, and practice development initiatives.

ESSENTIAL JOB FUNCTIONS

To perform this job successfully, an individual must be able to perform each essential function

satisfactorily. The requirements listed below are representative of the knowledge, skill, and/or ability

required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions

1) Engagement Leadership & Delivery Management

• Lead internal audit and US SOX engagements from planning through reporting and remediation tracking.

• Develop engagement plans, timelines, budgets, and resource models; manage execution to milestones.

• Serve as day-to-day client lead; maintain strong working relationships with stakeholders (Controller, Finance Directors, Process Owners, Internal Audit leadership).

• Provide clear status reporting, issue escalation, and risk-based prioritization throughout the engagement.

• Ensure adherence to firm methodology, documentation standards, and quality expectations.

2) SOX 404 Program Execution (First-Year and Ongoing)

• Perform financial statement risk assessment and SOX scoping, including:

o Significant accounts and disclosures

o Relevant assertions

o In-scope processes, locations, entities, and key systems

• Support design and enhancement of SOX frameworks aligned with COSO and SEC/PCAOB requirements.

• Coordinate with IT audit specialists to align business process controls with ITGCs, key reports, interfaces, and system dependencies.

• Drive consistent execution expectations for control owners and ensure audit-ready evidence standards.

3) Business Process Documentation (Hands-On + Review)

• Develop and/or review SOX documentation, including:

o Risk and Control Matrices (RACMs)

o Process narratives and/or flowcharts

o Walkthrough materials and supporting evidence lists

o Key report and IPE (information produced by the entity) documentation

• Ensure documentation is technically accurate, complete, and defensible under external audit scrutiny.

• Translate walkthrough outcomes into clear, structured control descriptions, risks, frequencies, and evidence requirements.

4) Walkthrough Facilitation & Control Gap Identification

• Lead walkthroughs with process owners across key cycles (e.g., Revenue/AR, Procure-to-Pay/AP, Record-to-Report/Close, Treasury, Equity, Intercompany, Payroll, Inventory where applicable).

• Identify design gaps, control weaknesses, and documentation deficiencies; validate control ownership and performance.

• Evaluate whether controls appropriately address risks and assertions; confirm completeness of control populations and evidence.

5) Deficiency Assessment & Remediation Support

• Assess control deficiencies (design and operating effectiveness) and perform root cause analysis.

• Support severity evaluation consistent with SOX guidance (deficiency, significant deficiency, material weakness) in coordination with client and firm leadership.

• Develop practical remediation plans, including:

o Control redesign or new control implementation

o Compensating/mitigating controls where appropriate

o Testing approach for remediation validation

• Track remediation progress and communicate status, risks, and dependencies.

6) Internal Audit Advisory & Risk Management Support (as applicable)

• Execute risk-based internal audits, governance reviews, process improvement reviews, and compliance/statutory requirement reviews.

• Draft and/or improve policies, procedures, and controls to strengthen governance and operational effectiveness.

• Provide value-added recommendations grounded in industry and leading practices.

7) Team Leadership, Coaching & Quality Review

• Lead and develop teams through effective delegation, coaching, and performance feedback.

• Review workpapers, RACMs, narratives, and audit reports for quality, completeness, and methodology compliance.

• Train team members on SOX concepts, control design, documentation standards, and client-ready deliverables.

• Foster a collaborative, inclusive, and high-performance engagement environment.

8) Engagement Operations (Business Management)

• Support engagement administration including staffing, scheduling, and billing coordination.

• Contribute to proposal support, scoping discussions, and client presentations as needed.

• Apply sound judgment to manage competing priorities and meet deadlines in fast-paced environments.

QUALIFICATIONS: MINIMUM EDUCATION/EXPERIENCE

• Bachelor's degree in Accountancy, Finance, Internal Auditing, or related field.
• CPA preferred; CIA/CISA and other relevant certifications are a plus.
• 7–10+ years of progressive experience in internal audit, SOX 404, and internal controls (Big 4 or comparable advisory environment strongly preferred).
• Proven experience leading US SOX business process engagements (first-year SOX implementation experience strongly preferred).
• Demonstrated experience building and/or reviewing RACMs, narratives, walkthrough documentation, and control evidence requirements.
• Experience identifying control gaps and designing remediation plans; familiarity with deficiency evaluation concepts.
• Exposure to ERP environments (e.g., NetSuite, SAP, Oracle, Workday, Dynamics) and key report/IPE considerations.
• Pre-IPO and/or complex, multi-entity environments preferred.
• Willingness to work one of the following shifts, Tuesday to Saturday:
• Early Shift: 3:00 AM to 12:00 NN
• Night Shift: 1:00 AM to 10:00 AM

TECHNICAL AND OTHER SKILLS:

• Strong working knowledge of COSO, SOX 404, and SEC/PCAOB-aligned documentation expectations.
• Strong command of financial controls (GL, intercompany, bank recs, tax controls, statutory considerations).
• Excellent client-facing communication skills (written and verbal); ability to explain technical concepts to non-technical stakeholders.
• Strong project management skills (planning, execution, budgeting, and issue management).
• Advanced analytical and problem-solving skills; able to exercise professional judgment in ambiguous situations.
• Proficiency in Microsoft Office (Excel, PowerPoint, Word); comfort working with audit tools and shared documentation platforms.