Director, IT Audit, SOX & Systems Implementation

Requisition ID # 162119 

Job Category: Compliance / Risk / Quality Assurance 

Job Level: Director/Chief

Business Unit: Finance

Work Type: Hybrid

Job Location: Oakland; Sacramento; San Ramon

Department Overview

The mission of the Internal Auditing (IA) department is to provide PG&E Corporation, Pacific Gas and Electric Company (each a Company and, together, the Companies), and their subsidiaries with independent, objective assurance over the adequacy of processes and controls to manage business risk and to provide control advisory services.  IA is responsible for assessing the risk management and control processes of all aspects of the Corporation’s activities including SOX, energy procurement and hedging, capital expenditures, electric and gas operations, customer and enterprise solutions, health and safety, information technology, environmental, finance/accounting, power generation, wildfire/emergency operations, and more.  IA is a department within the Finance organization.

IA adheres to the Institute of Internal Auditors’ International Standards of the Professional Practice of Internal Auditing, Code of Ethics and Definition of Internal Auditing.

Position Summary

The Director, IT Audit, SOX & Systems Implementation will lead a team of auditors responsible for performing information technology and integrated audits and control advisory (CA) assignments on IA’s annual Audit Plan and providing internal control advice on the implementation of new key systems across PG&E, including Propel.  This position is also responsible for overseeing and managing all aspects of the Sarbanes-Oxley (SOX) IT compliance requirements.  This position reports to the Senior Director of Internal Auditing.  The ideal candidate will have knowledge of internal controls, information technology processes and risks, and SOX requirements and related controls, along with strong analytical and client skills and excellent business judgment.

This position is hybrid, working from your remote office and your assigned work headquarters in Oakland.

Reporting Relationship

The Director, IT Audit, SOX & Systems Implementation will report to the Senior Director, Internal Audit.

Job Responsibilities

Leadership and Supervision

• Leads direct reports through assignments by providing timely direction and constructive feedback on individual, team and functional performance.
• Responsible for staffing audit, CA, SOX, and control advice on new system implementation assignments based on the skills required for the work and development needs of the staff.
• Leads direct reports through rigorous performance and development plans.
• Helps team thrive in dynamic and high-pressure situations.
• Acts as a thought leader within IA Leadership Team in setting goals and initiatives.
• Leads and mentors the team, providing guidance and support for their professional development.
• Assists the Senior Director of Internal Audit in managing internal audit and SOX processes.

Deliver Audits

• Establishes operational objectives and work plans and delegates assignments.
• Works with direct reports to monitor and ensure the timely quality delivery of all audit and CA work for responsible areas, including coordinating integrated audits with other IA Managers.
• Defines and communicates expectations for each audit project including objectives, scope, timing, key risks, contacts, and deliverables; produces well written reports and summaries to meet deadlines.
• Works with clients and team to ensure the development of risk assessments and design of audit programs.
• Provides quality control by verifying work plans, validations, and audit documentation are effective and in line with audit objectives.
• Oversees the progress of each audit and keeps audit clients informed of audit progress and resolves issues as they arise; supports clients in designing controls into new and existing business processes.
• Identifies control gaps, assists Management in creating action plans to address risks and ensures that action plans address root cause of the issue and are completed.
• Influences process improvements with Business Partners’ Leadership.
• Monitors progress to ensure work objectives are delivered on time and within budget, and business results are realized.
• Ensures staff follows all Quality Assurance procedures.
• Develops and communicates annual risk-based audit plan based on agreement with responsible Officers.

• Prepares input for reports to the Audit Committees of the Board of Directors.

SOX IT

• Develops and implements a comprehensive SOX IT compliance program to ensure adherence to regulatory requirements.
• Collaborates with cross-functional teams to assess and identify potential risks and controls gaps within IT systems and associated processes that support internal controls over financial reporting (ICFR).
• Provides guidance and support to (1) functional areas for implementation and maintenance of effective IT controls and processes and (2) the SOX IT testing team.
• Assesses the impact to ICFR for the SOX IT deficiencies identified.
• Provides guidance and monitors the remediation effort for SOX IT deficiencies identified.
• Conducts regular reviews and assessments to evaluate the effectiveness of existing controls and identify areas for improvements.
• Reviews and presents quarterly deliverables to senior leadership and stakeholders on the status of SOX IT compliance initiatives and issues/risks.
• Provides guidance to cross-functional teams that are designing and implementing new systems to assess changes and advises on control impact.

Leadership Qualities

PG&E expects its leaders to conduct themselves with the highest ethics and integrity and to embody specific leadership qualities.

Strategic Mindset

• Seeing ahead to future possibilities and translating them into breakthrough strategies.
• Operating effectively, even when things are not certain, or the way forward is not clear.

A Leader in the Community and Industry

• Effectively building formal and informal relationship networks inside and outside the organization.
• Anticipating and balancing the needs of multiple stakeholders.

Demonstrates Safety Leadership

• A safety champion in words and deeds with respect to both employee and public safety.
• Creating and maintaining a speak up culture free of retaliation.

Influences and Inspires

• Using various- communications that convey a clear understanding of the needs of different audiences.
• Maneuvering comfortably through complex policy, process, and people-related dynamics.

Optimizes Team Performance

• Building teams with a strong identity that apply their diverse skills and perspectives to achieve common goals.
• Creating a climate where people are developed and motivated to do their best to help the organization.

Values Diversity and Creates Inclusion

• Recognizing the value that different perspectives and cultures bring to an organization.

Fiscally Responsible

• Interpreting and applying understanding of key financial indicators to make better business decisions.
• Planning and prioritizing work to meet commitments aligned with organizational goals.

Leads Ethically and in a Compliant Manner

• Sponsoring and sustaining a high integrity speak-up corporate culture which prioritizes safety, compliance, and ethics.
• Building on necessary level of industry, company, and subject-matter expertise, including laws and regulations.

Provides a High Level of Customer Service

• Building strong customer relationships and delivering hometown, customer-centric solutions.

Compensation

PG&E is providing the salary range that the company in good faith believes it might pay for this position at the time of the job posting. This compensation range is specific to the locality of the job.  The actual salary paid to an individual will be based on multiple factors, including, but not limited to, specific skills, education, licenses or certifications, experience, market value, geographic location, and internal equity.  Although we estimate the successful candidate hired into this role will be placed towards the middle or entry point of the range, the decision will be made on a case-by-case basis related to these factors.​

A reasonable salary range is:

Bay Area Minimum: $174,000

Bay Area Maximum: $296,000

Background Qualifications

Minimum

• Bachelor’s degree in Accounting, Business or related discipline, or equivalent experience.
• 10 years of accounting and auditing, including public accounting experience.

Desired

• Master’s degree or equivalent.
• One or more of the following certifications: Certified Public Accountant (CPA), Certified Internal Auditor (CIA), Certified Information Systems Auditor (CISA), Certified Fraud Examiner (CFE).
• Demonstrates a clear understanding of control frameworks, industry regulations and business/operational aspects of the industry and PG&E.
• Knowledge of SAP systems, cybersecurity, and privacy.

Knowledge and Skill Competencies Desired

• Previous experience in the energy or public utility industry.
• Knowledge of utility gas and/or electric systems and operations.
• Project management, organizational, analytical, and problem-solving experience.
• Demonstrated ability to present technical information clearly and concisely and in a business context.
• Thorough knowledge of analyzing and developing risk assessment processes and assessing risk within a process or business function and accurately assessing the inherent and residual risks to the company.
• Ability to communicate effectively, lead client meetings, discuss issues and controls, and report both on progress of work product with the client managers, directors, or project teams.
• Excellent planning, leadership, and supervisory skills and the ability to build effective relationships.
• Ability to positively influence business owners on control solutions.
• Ability to understand industry and regulatory changes and impact to the company and controls.

#featuredjob