Program Manager, Technology Compliance (SOX)

Who we are 

About Stripe

Stripe is a financial infrastructure platform for businesses. Millions of companies—from the world’s largest enterprises to the most ambitious startups—use Stripe to accept payments, grow their revenue, and accelerate new business opportunities. Our mission is to increase the GDP of the Internet, and we have a staggering amount of work ahead. That means you have an unprecedented opportunity to put the global economy within everyone’s reach while doing the most important work of your career.

About the team

The Technology Compliance team is responsible for managing compliance, controls and risk initiatives at Stripe. We have a team of program managers who lead programs that are focused on driving compliance within Stripe against industry/regulatory standards. Program managers in the team not only work on leading compliance and risk efforts to completion but also maintain strong relationships with internal stakeholders to support and answer compliance questions on an ongoing basis.

What you’ll do 

You will work closely with the various control owning teams within engineering on control implementation, testing, and remediation activities. You will also be responsible for partnering with the SOX team to guide engineering teams through design and operating effectiveness testing processes. Additionally, you will partner extensively with our SOX team within the Chief Accounting Organization to ensure that engineering controls are designed and operating in accordance to requirements set forth at an enterprise level. This means not only understanding financial risk and compliance requirements but also having a technical understanding of common technologies and systems to have constructive discussions with our engineering teams and SOX teams when translating requirements. Also, this person should be someone who has experience formally managing compliance programs and enjoys doing them.

Responsibilities

• Provide ongoing compliance support to Engineering around control monitoring, walkthrough, testing, and remediation.
• Build and maintain close working relationships with engineering control owners and SOX team to ensure a deep understanding of controls and processes.
• Develop control process optimizations to increase efficiency and compliance rate
• Work with control owners to provide sufficient support to evidence control performance based on auditor requests.
• Build monitoring processes to help engineering teams be proactively alerted on compliance issues.
• Lead and perform research documenting SOX issues and track remediation to conclusion.
• Partner with the SOX team to help clarify scope and requirements for engineering teams.
• Review findings from audits and facilitate the remediation plans in conjunction with the SOX team.

Who you are

We’re looking for someone who meets the minimum requirements to be considered for the role. If you meet these requirements, you are encouraged to apply. 

Minimum requirements 

• 5+ years of experience working and leading SOX controls initiatives
• Demonstrated knowledge of control implementation based on SOX requirements
• Experience with internal controls including control design, development of system flows, and remediation of gaps
• Ability to assist with documentation of engineering controls to support SOX compliance audits
• Demonstrated knowledge of internal control frameworks and concepts (COSO)

Preferred qualifications 

• Certifications such as, but not limited to CISA, CPA, or CIA are recommended.
• Commitment to continuous improvement of compliance programs
• Experience working in a fast paced technology environment
• Expertise in the security practices of the payment industry and in other security regulations (AICPA trust principles, NIST, ISO)