What are the responsibilities and job description for the Senior Compliance Officer - Financial Control Specialist position at Onto?
At Onto Innovation, we are leaders in process control, combining global scale with an expanded portfolio of leading-edge technologies.
Our breadth of offerings across the entire semiconductor value chain helps our customers solve their most difficult yield, device performance, quality, and reliability issues.
Job Summary & Responsibilities
The Senior SOX Auditor role focuses on Sarbanes-Oxley (SOX) business process, IT General Controls (ITGC), and applications control testing.
The Senior SOX Auditor is responsible for ensuring that the SOX processes support compliance with the Committee of Sponsoring Organizations (COSO) framework of internal controls for financial reporting.
Key Activities:
- Participates in planning and scoping of both ITGC, automated application controls, and business process controls.
- Leads process walkthroughs for business process, ITGC, and application controls and assesses the effectiveness of the processes and controls.
- Executes testing of business process, ITGC, and application controls in accordance with defined test attributes and guidance.
- Identifies and documents IT security risks and opportunities for improvement.
- Reviews and assesses impact from issues raised by various partners, both internal and external.
The Senior SOX Auditor will develop process narratives and controls documentation, perform assurance procedures to assess the design and effectiveness of business process controls, ITGC, and application controls, propose process improvement recommendations, and help prepare reporting for business leadership.
Qualifications
To be successful in this role, you will need:
- Bachelor's degree in accounting, finance, management information systems, or business information systems.
- Minimum 3 years of business process SOX experience with exposure to ITGC/ITAC.
- Experience designing and testing business process controls, ITGC, and application controls, including segregation of duties assessment, identification and analysis of risks, and evaluating controls effectiveness.
- Understanding of SOX, 2013 COSO framework, COBIT, financial reporting risks, internal controls, and test plan development.
- Knowledge of infrastructure and IT processes and controls (e.g., change management, backup and recovery, user access/security administration).
Ongoing professional development and training are crucial in this field, so relevant certifications such as CPA, CIA, CISA, CISM, or CISSP are highly valued.
About Us
We offer a competitive salary and a generous benefits package, including health/dental/vision/life/disability, PTO, 401K plan with employer match, and an Employee Stock Purchase Program (ESPP).
We provide a collaborative working environment along with resources and state-of-the-art tools & equipment to promote success.
We strive to create a welcoming, inclusive corporate culture where individuals are recognized for their contributions.
