Job details

SOX ITGC (UAR) Manager

Get a free resume review

ABOUT THE ROLE

We are seeking a skilled SOX ITGC Manager to lead our Sarbanes-Oxley (SOX) compliance efforts with a particular focus on User Access Review (UAR) controls and Identity Governance. The ideal candidate will have extensive experience in IT general controls, risk management, and identity management frameworks. This role will be responsible for overseeing and managing the execution of the SOX User Access Review process to ensure compliance with Sarbanes-Oxley (SOX) regulations and company policies. This role requires a strong understanding of information security principles, regulatory requirements, and the ability to collaborate with external auditors, internal audit teams, and business leaders to ensure robust compliance with SOX controls and effective management of user access reviews. The ideal candidate will possess a strong background in SOX compliance, audit management, and cross-functional collaboration.

YOUR DAILY IMPACT AT PELOTON

SOX Compliance Management:
Oversee and manage SOX compliance activities related to IT General Controls (ITGC), ensuring timely execution of UAR and other related controls.
User Access Review (UAR):
Design, implement, and monitor UAR processes to ensure that user access is appropriate and complies with organizational policies and regulatory requirements.
Identity Governance:
Develop and maintain an identity governance framework to manage user identities, roles, and access rights across systems, ensuring least privilege access principles are adhered to.
Risk Assessment:
Conduct regular risk assessments related to ITGC and identity management. Identify potential risks and recommend mitigation strategies to senior management.
Documentation and Reporting:
Create and maintain comprehensive documentation for all SOX controls, including policies, procedures, and process flows. Prepare and present regular compliance reports to management and auditors.
Collaboration:
Work closely with IT teams, internal audit, and external auditors to facilitate audits and ensure compliance with SOX requirements.
Interface with External Auditors:
Serve as the primary point of contact for external auditors regarding ITGC and UAR controls, ensuring that all necessary documentation and information are provided in a timely manner.
Training and Awareness:
Develop training programs for staff on SOX compliance, UAR controls, and best practices in identity governance to foster a culture of compliance within the organization.
Continuous Improvement:
Identify opportunities for process improvements in compliance practices and implement best practices in identity governance.

Qualifications:

Bachelor’s degree in Computer Science, Information Technology, Accounting, or a related field.
Minimum of 8 years of experience in IT compliance, risk management, or audit, with a focus on SOX.
Strong understanding of ITGC frameworks, SOX requirements, and UAR controls.
Experience with UAR identity governance tools (Sailpoint, CyberArk)
Familiarity with relevant regulations (e.g., GDPR, HIPAA) and industry standards (e.g., ISO 27001).
Excellent analytical, problem-solving, and organizational skills.
Strong communication skills, both verbal and written, with the ability to present complex information clearly.
Relevant certifications (e.g., CISA, CISSP, CRISC) are a plus

#LI-Hybrid

#LI-AC1

The base salary range represents the low and high end of the anticipated salary range for this position based at our New York City headquarters. The actual base salary offered for this position will depend on numerous factors including individual performance, business objectives, and if the location for the job changes. Our base salary is just one component of Peloton’s competitive total rewards strategy that also includes annual equity awards and an Employee Stock Purchase Plan as well as other region-specific health and welfare benefits.

As an organization, one of our top priorities is to maintain the health and wellbeing for our employees and their family. To achieve this goal, we offer robust and comprehensive benefits including:

- Medical, dental and vision insurance

- Generous paid time off policy

- Short-term and long-term disability

- Access to mental health services

- 401k, tuition reimbursement and student loan paydown plans

- Employee Stock Purchase Plan

- Fertility and adoption support and up to 18 weeks of paid parental leave

- Child care and family care discounts

- Free access to Peloton Digital App and apparel and product discounts

- Commuter benefits and Citi Bike Discount

- Pet insurance and so much more!

Base Salary Range

$139,905—$188,871 USD

ABOUT PELOTON:

Peloton (NASDAQ: PTON) provides Members with expert instruction, and world class content to create impactful and entertaining workout experiences for anyone, anywhere and at any stage in their fitness journey. At home, outdoors, traveling, or at the gym, Peloton brings together innovative hardware, distinctive software, and exclusive content. Founded in 2012 and headquartered in New York City, Peloton has millions of Members across the US, UK, Canada, Germany, Australia, and Austria. For more information, visit www.onepeloton.com.

Peloton is an equal opportunity employer and complies with all applicable federal, state, and local fair employment practices laws. Equal employment opportunity has been, and will continue to be, a fundamental principle at Peloton, where all team members, applicants, and other covered persons are considered on the basis of their personal capabilities and qualifications without discrimination because of race, color, religion, sex, age, national origin, disability, pregnancy, genetic information, military or veteran status, sexual orientation, gender identity or expression, marital and civil partnership/union status, alienage or citizenship status, creed, genetic predisposition or carrier status, unemployment status, familial status, domestic violence, sexual violence or stalking victim status, caregiver status, or any other protected characteristic as established by applicable law. This policy of equal employment opportunity applies to all practices and procedures relating to recruitment and hiring, compensation, benefits, termination, and all other terms and conditions of employment. If you would like to request any accommodations from application through to interview, please email: applicantaccommodations@onepeloton.com.

Qualified applicants with arrest or conviction records will be considered for employment in accordance with the Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act, the City of Los Angeles Fair Chance Initiative for Hiring Ordinance and the San Francisco Fair Chance Ordinance, as applicable to applicants applying for positions in these jurisdictions.

Please be aware that fictitious job openings, consulting engagements, solicitations, or employment offers may be circulated on the Internet in an attempt to obtain privileged information, or to induce you to pay a fee for services related to recruitment or training. Peloton does NOT charge any application, processing, or training fee at any stage of the recruitment or hiring process. All genuine job openings will be posted here on our careers page and all communications from the Peloton recruiting team and/or hiring managers will be from an @onepeloton.com email address.

If you have any doubts about the authenticity of an email, letter or telephone communication purportedly from, for, or on behalf of Peloton, please email applicantaccommodations@onepeloton.com before taking any further action in relation to the correspondence.

Peloton does not accept unsolicited agency resumes. Agencies should not forward resumes to our jobs alias, Peloton employees or any other organization location. Peloton is not responsible for any agency fees related to unsolicited resumes.

Peloton Glassdoor Company Review

3.8

Peloton DE&I Review

No rating

CEO of Peloton

Unknown name

Approve of CEO

Average salary estimate

$164388 / YEARLY (est.)

min

max

$139905K

$188871K

If an employer mentions a salary or salary range on their job, we display it as an "Employer Estimate". If a job has no salary data, Rise displays an estimate if available.

What You Should Know About SOX ITGC (UAR) Manager, Peloton

At Peloton, we're looking for a passionate and seasoned SOX ITGC (User Access Review) Manager to lead our efforts in Sarbanes-Oxley compliance right here in the vibrant city of New York. In this pivotal role, you will dive deep into managing and overseeing our SOX User Access Review processes, making sure that we're not only compliant but also ahead of the curve in IT general controls. If you have extensive experience in risk management and auditing, and a knack for identity governance frameworks, we want to hear from you! Your daily impact will involve designing and implementing user access protocols that align with our organizational policies while maintaining strong documentation and reporting practices. You will collaborate with cross-functional teams, including IT, internal audit, and external auditors to ensure that our compliance stack is robust and effective. It doesn’t stop there; you’ll also conduct risk assessments, recommend strategies, and even develop training programs to enhance understanding of SOX compliance across the entire company. With a solid foundation in IT compliance, an understanding of SOX regulations, and excellent communication skills, you'll play a crucial part in fostering a culture of compliance at Peloton. If you’re ready to elevate our compliance efforts and drive continuous improvement in identity governance practices, you’ll fit right in with our dynamic team dedicated to transforming the fitness industry.

Frequently Asked Questions (FAQs) for SOX ITGC (UAR) Manager Role at Peloton

What are the responsibilities of a SOX ITGC Manager at Peloton?

The SOX ITGC Manager at Peloton is responsible for overseeing SOX compliance activities, particularly focusing on User Access Review (UAR) controls. This includes managing SOX IT General Controls, conducting risk assessments, creating documentation for SOX controls, and facilitating communication with external auditors. They design and implement UAR processes and remain engaged with cross-functional teams to ensure compliance with regulatory requirements.