Boston Scientific Senior SOX Analyst 

India, Haryana, Gurugram 

582694351

India-Haryana, Gurgaon

Key Responsibilities:

• Support IT SOX compliance efforts, encompassing IT General Computer Controls (ITGC), Segregation of Duties (SOD) controls, and application controls. Ensure processes meet regulatory standards and align with best practices for the medical device industry.
• Perform comprehensive control walkthroughs, producing high-quality documentation and conducting rigorous quality assurance across all IT SOX areas. Confirm control evidence meets criteria for accuracy, completeness, and precision.
• Identify and resolve gaps in IT Automated/Application Controls (ITAC), working collaboratively with management to implement corrective actions and escalate significant issues to senior leadership when necessary.
• Support system upgrades, enhancements, and new deployments by ensuring that internal controls over financial reporting are seamlessly integrated into evolving processes and technology.
• Develop and execute audit plans targeting IT and technology-related risks, such as cybersecurity, privacy, and business continuity. Assess changes to products, systems, and processes for compliance and risk mitigation.
• Collaborate with business and IT stakeholders to analyze audit results, determine root causes, and implement actionable remediation plans while preserving objectivity and fostering positive relationships.
• Prepare clear and impactful audit reports, framing observations within the context of the medical device industry. Deliver practical recommendations and insights to enhance risk management and operational effectiveness.
• Apply advanced knowledge of security protocols, privacy frameworks, and agile methodologies to navigate and address emerging challenges in IT compliance.

Experience Required:

• 3 years of relevant experience.
• Should have experienced with IT General Controls testing / assessments and audit experience.
• CIA (Certified Internal Auditor) and/or CISA (Certified Information Systems Auditor) certifications preferred.
• Strong understanding of ITGCs (e.g., access controls, change management, data integrity).
• Experience in conducting IT audits and control assessments for IT systems, networks, and infrastructure.
• Familiarity with audit frameworks