SOX Compliance Lead

HP, Inc. • Full-time • Vancouver, WA, US • $105.05k - $161.80k / year • 3w ago

Description -

At HP, we believe that the future of work is delivering growth and fulfillment through technology. We are a technology company born of the belief that companies should do more than just make a profit , t hey should make the world a better place. O ur technology – a product and service portfolio of personal systems, printers, and 3D printing solutions – was created to inspire this meaningful progress. We know that thoughtful ideas can come from anyone, anywhere, at any time , and all it takes is one to change the world.

HP’s Technology & Innovation Organization (TIO) is at the forefront of redefining how HP delivers value—driving the shift from a traditional hardware company to a technology leader that enables intelligence at the edge. Guided by a mission to elevate customer experiences through seamlessly integrated, AI‑driven solutions, TIO is building a secure, consistent, and innovative software ecosystem that unifies HP’s diverse product landscape. By championing software‑led transformation, fostering breakthrough innovation, and ensuring a cohesive “One HP” experience, TIO plays a critical role in shaping the future of how people interact with HP technology around the world.

Job Summary

HP is seeking a highly motivated and experienced SOX Compliance Lead to join our Security, Risk Management, & Compliance department which supports engineering in building customer trust, str engthening platform and product security, and enabling effective risk management and compliance .

This role is a highly visible rol e managing and executing the compliance and internal control testing processes related to SOX. This role partners with Engineering, IT , F inance, I nternal A udit, and the E xternal A uditors to assess and ensure that internal controls over financial reporting (ICFR) are designed and operatin g effectively .

This role will also be essential in organizational efforts to further integrate Agentic AI within the SDLC to reduce compliance burden while still ensuring adherence to SOX and other security and privacy regulatory requirements and certifications.

Responsibilities

Manage and execute the SOX compliance program, including scoping, risk assessment, testing, and remediation activities.

Identify and evaluate ITGCs across areas such as access controls, change management, system operations, and SDLC .

Collaborate with control owners to ensure understanding, proper documentation, and implementation of IT control procedures.

Perform walkthroughs and testing of controls for key financial systems and supporting infrastructure.

Track, document, and communicate control deficiencies and remediation plans.

Serve as a liaison between Engineering, IT, internal audit, and external auditors during SOX reviews.

Assist with the development and maintenance of SOX documentation including risk/control matrices, process narratives, and flowcharts.

Monitor and report on compliance status and risks to leadership through dashboards and reports.

Provide guidance on control design and process improvements to enhance the overall IT control environment.

Support other security and privacy compliance requirements such as ISO / SOC2, NIS2, DORA, EO 14117 , EU CRA, EU AI Act, GDPR , etc

Support Shift-Left and Agentic AI efforts to improve the SDLC by moving testing and security ea rlier in the lifecycle and automating processes to reduce manual development and compliance efforts

Qualifications

Strong understanding of internal control over financial reporting (ICOFR), risk assessment, IT General Controls (ITGC), and PCAOB expectations

Demonstrated experience testing ITGCs for applications, operating systems, and databases and reviewing / validating the completeness and accuracy of audit evidence

Experience in constructively challenging internal and external auditors when appropriate , ensuring audit requests and findings are risk based, practical, and aligned with regulatory guidance A ttention to detail and quality, balanced with the ability to see the big picture and identify areas for process simplification

Ability to proactively look ahead, anticipate questions, independently assess risk, think critically and creatively to achieve the best outcome, and elevate issues to the right level internally and externally to resolve

Proven ability to work in a deadline-driven environment and handle multiple projects simultaneously

Excellent interpersonal, written and verbal communications, presentation and influencing skills

Strong planning and project management skills

Education & Experience

8+ years of experience in IT Audit, IT Compliance, or a related discipline, with direct SOX IT compliance experience

Bachelor’s degree in Business Administration , Accounting, Management Information Systems (MIS), Computer Science or related field

Preferred certifications: CISA, CISM, CRISC, CISSP or similar certifications

Required Knowledge & Skills

Business Processes

ICOFR

IT General Controls

IT Audit

S ystem and Organization Controls (SOC) reports

Preferred Knowledge & Skills

A uditing Github or similar source code repositories

A utomating compliance efforts to reduce manual burden

Cybersecurity Governance, Risk & Compliance

Control frameworks such as NIST CSF, NIST AI RMF, ISO 2 7001, SOC2 , etc

Familiarity with AI risk management

Impact & Scope

Impacts function and leads and/or provides expertise to functional project teams and may participate in cross-functional initiatives.

Complexity

Works on complex problems where analysis of situations or data requires an in-depth evaluation of multiple factors.

Disclaimer

This job description describes the general nature and level of work performed in this role. It is not intended to be an exhaustive list of all duties, skills, responsibilities, knowledge, etc. These may be subject to change and additional functions may be assigned as needed by management.

Salary:

The pay range for this role is $105,050 to $161,800 USD annually with additional opportunities for pay in the form of bonus and/or equity (applies to United States of America candidates only). Pay varies by work location, job-related knowledge, skills, and experience.

Benefits:

HP offers a comprehensive benefits package for this position, including:

Health insurance
Dental insurance
Vision insurance
Long term/short term disability insurance
Employee assistance program
Flexible spending account
Life insurance
Generous time off policies, including;
4-12 weeks fully paid parental leave based on tenure
11 paid holidaysAdditional flexible paid vacation and sick leave ( US benefits overview )

The compensation and benefits information is accurate as of the date of this posting. The Company reserves the right to modify this information at any time, with or without notice, subject to applicable law.

Job -

Data & Information Technology

Schedule -

Full time

Shift -

No shift premium (United States of America)

Travel -

Relocation -

Equal Opportunity Employer (EEO) -

HP, Inc. provides equal employment opportunity to all employees and prospective employees, without regard to race, color, religion, sex, national origin, ancestry, citizenship, sexual orientation, age, disability, or status as a protected veteran, marital status, familial status, physical or mental disability, medical condition, pregnancy, genetic predisposition or carrier status, uniformed service status, political affiliation or any other characteristic protected by applicable national, federal, state, and local law(s).

Please be assured that you will not be subject to any adverse treatment if you choose to disclose the information requested. This information is provided voluntarily. The information obtained will be kept in strict confidence.

For more information, review HP’s EEO Policy or read about your rights as an applicant under the law here: “ Know Your Rights: Workplace Discrimination is Illegal "