Join our organization as a Senior IT Analyst! We seek a skilled and experienced professional with a strong background in information technology auditing. As a Senior IT Analyst, you will be crucial in evaluating and assessing IT controls to ensure compliance with regulatory requirements and industry’s best practices. Reporting to the Director of SOX & Compliance, you will contribute to the planning, execution, and reporting of IT audits & SOX compliance, focusing on IT general controls (ITGCs), application controls, access controls, and data security.

Why This Role Matters

• Ensure the integrity and resilience of Bonnell’s growing technology landscape by evaluating IT systems, infrastructure, and controls at scale.
• Advance investor and regulatory confidence by strengthening our SOX, cybersecurity, and application control environments through proactive testing and continuous improvement.
• Safeguard data and digital operations as a trusted advisor interfacing with IT, Security, Legal, and Finance to mitigate risk and enhance compliance.
• Drive audit excellence across Bonnell’s systems, including Oracle, JD Edwards, EPICS, BPCS.

ESSENTIAL DUTIES AND RESPONSIBILITIES

• Conduct Sarbanes-Oxley (SOX) and IT operational audits, including planning, scoping, and executing audit procedures in accordance with established guidelines and standards.
• Evaluate and test ITGCs, application controls, and business-related access controls to assess their effectiveness and identify potential risks.
• Review IT processes and systems to ensure compliance with relevant regulations and company policies.
• Collaborate with business units and IT teams to identify control gaps and recommend improvements.
• Assist in providing recommendations and guidance on control enhancements to mitigate identified risks.
• Work closely with external auditors during the audit process, providing requested documentation and addressing findings or recommendations.
• To enhance audit effectiveness, stay informed about emerging technologies, industry trends, and regulatory changes.
• Prepare audit reports and communicate findings, recommendations, and action plans to management.
• Assist in developing and implementing remediation plans for identified control deficiencies.
• Foster strong working relationships with stakeholders, promoting effective communication and collaboration.
• Carry out special project work as required.

REQUIRED QUALIFICATIONS

• Bachelor’s degree in information systems, Computer Science, Accounting, or related field
• 6+ years of experience in IT auditing, preferably in public accounting or corporate internal audit
• Familiarity with industry frameworks such as Sarbanes-Oxley (SOX), COBIT, COSO, and cybersecurity or data privacy regulations
• Hands-on experience evaluating IT controls across ERP systems (e.g., Oracle, JDE, EPICS), and microservice architectures
• Strong understanding of IT processes and systems, including application and access control design
• Excellent written and verbal communication skills, with the ability to translate technical content for both technical and non-technical stakeholders
• Detail-oriented with strong analytical, organizational, and time-management skills
• High ethical standards, sound judgment, and commitment to confidentiality

PREFERRED QUALIFICATIONS

• Relevant professional certifications such as CISA, CISSP, or equivalent
• Experience of reviewing or working with industrial control / manufacturing environments and systems

CORE SKILLS

• Problem Solving – Finding effective solutions to changes by analyzing, evaluating, and implementing strategies.
• Industry Skills – Specific competencies, knowledge, and ability in manufacturing.
• Teamwork – Collaborative effort to achieve a common goal working with others in a shared responsibility.
• Pressure Management – Ability to handle stress and challenges to make sound decisions for optimal outcomes.
• Attention to Detail – Thoroughly and accurately analyze and complete tasks, ensuring precision to minimize errors.
• Leadership – The ability to guide, inspire and influence engineers towards achieving common goals and fostering growth and learning.