SOX Compliance Lead

At HP, we believe that the future of work is delivering growth and fulfillment through technology.  We are a technology company born of the belief that companies should do more than just make a profit, they should make the world a better place.Our technology – a product and service portfolio of personal systems, printers, and 3D printing solutions – was created to inspire this meaningful progress. We know that thoughtful ideas can come from anyone, anywhere, at any time, andall it takes is one to change the world.

HP’sTechnology & Innovation Organization(TIO) is at the forefront of redefining how HP delivers value—driving the shift from a traditional hardware company to a technology leader that enables intelligence at the edge. Guided by a mission to elevate customer experiences through seamlessly integrated, AI‑driven solutions, TIO is building a secure, consistent, and innovative software ecosystem that unifies HP’s diverse product landscape. By championing software‑led transformation, fostering breakthrough innovation, and ensuring a cohesive “One HP” experience, TIO plays a critical role in shaping the future of how people interact with HP technology around the world.

Job Summary

HP isseekinga highly motivatedand experiencedSOX Compliance Leadto join our Security, Risk Management, & Compliance departmentwhich supports engineeringin building customer trust, strengthening platform and product security, and enabling effective risk managementand compliance.  

This roleis ahighly visiblerolemanaging and executingthe compliance and internal control testing processes related to SOX. This role partners withEngineering,IT, Finance,InternalAudit, andthe ExternalAuditors to assess and ensure that internal controls over financial reporting (ICFR) are designed andoperatingeffectively.

This role will also be essential in organizational efforts to further integrate Agentic AI within the SDLCto reduce compliance burdenwhile still ensuring adherence to SOX and other security and privacy regulatory requirements and certifications.

Responsibilities

• Manage and execute the SOX compliance program, including scoping, risk assessment, testing, and remediation activities.

• Identifyand evaluate ITGCs across areas such as access controls, change management, system operations, andSDLC.

• Collaborate with control owners to ensure understanding, proper documentation, and implementation of IT control procedures.

• Perform walkthroughs and testing of controls for key financial systems and supporting infrastructure.

• Track, document, and communicate control deficiencies and remediation plans.

• Serve as a liaison betweenEngineering,IT, internal audit,andexternal auditors during SOX reviews.

• Assistwith the development and maintenance of SOX documentation including risk/control matrices, process narratives, and flowcharts.

• Monitor and report on compliance status and risks to leadership through dashboards and reports.

• Provide guidance on control design and process improvements to enhance the overall IT control environment.

• Supportother securityand privacycompliance requirements such as ISO / SOC2, NIS2, DORA,EO 14117,EU CRA,EU AI Act,GDPR,etc

• Support Shift-Left and Agentic AI efforts toimprove the SDLC bymoving testing and security earlier in the lifecycle and automating processesto reduce manualdevelopmentand complianceefforts

Qualifications

• Strong understanding of internal control over financial reporting (ICOFR), risk assessment, IT General Controls (ITGC), and PCAOB expectations

• Demonstrated experience testingITGCs forapplications, operating systems, and databasesand reviewing/validatingthe completeness and accuracy of audit evidence

• Experienceinconstructivelychallenging internal and external auditorswhenappropriate, ensuring audit requests and findings are risk based, practical, and aligned with regulatoryguidanceAttentionto detail and quality, balanced with the ability to see the big picture andidentifyareas for process simplification

• Ability to proactively look ahead,anticipatequestions, independently assess risk, think critically and creatively to achieve the best outcome, and elevate issues to the right level internally and externally to resolve

• Proven ability to work in a deadline-driven environment and handle multiple projects simultaneously

• Excellent interpersonal,writtenand verbal communications, presentation and influencing skills

• Strong planning and project management skills

Education& Experience

• 8+ years of experience in IT Audit, IT Compliance, or a related discipline, with direct SOX IT compliance experience

• Bachelor’s degree in Business Administration, Accounting, Management Information Systems (MIS), ComputerScienceor related field

• Preferred certifications: CISA, CISM, CRISC, CISSPor similar certifications

RequiredKnowledge & Skills

• BusinessProcesses

• ICOFR

• IT General Controls

• IT Audit

• System and Organization Controls (SOC) reports

Preferred Knowledge & Skills

• AuditingGithubor similar source coderepositories 

• Automating complianceefforts to reduce manual burden

• Cybersecurity Governance, Risk & Compliance

• Control frameworks such as NIST CSF,NIST AI RMF,ISO27001, SOC2,etc

• Familiarity withAIrisk management