Head of Internal audit/SOX


In this role, you will be responsible for the day-to-day management of Data4’s SOX Program. Specific responsibilities are expected to include:

  • Managing the day-to-day activities for SOX Program
  • Acting as the key liaison to the parent company’s internal audit team (Brookfield Internal Audit) to ensure that Brookfield’s requirements under its SOX Program are met
  • Serving as the primary point of contact for the external auditors relating to its testing of Data4’s internal controls over financial reporting. This includes coordinating walkthroughs and controls testing, aligning on the nature and severity of findings, and facilitating updates to the parent company
  • Conducting planning for the SOX Program, with the support of Brookfield Internal Audit, which includes performing and documenting the results of the inherent financial statement, fraud and IT risk assessments; developing risk-control matrices; identifying key control activities that address risks of material misstatement; scheduling work timelines; and determining resource requirements
  • Conducting process and key control walkthroughs and working with process and control owners to update documentation of in-scope processes and controls, including process narratives and/or flowcharts and risk-control matrices
  • Overseeing operating effectiveness testing of key controls
  • Monitoring the overall progress of the SOX Program and ensuring timelines set by the parent company and external auditors are met
  • Providing periodic status updates of SOX Program to the finance and IT management team and parent company
  • Identifying areas for improvement in internal controls and processes and assisting process and control owners with implementing recommendations
  • Identifying deficiencies in key control activities and supporting Management with developing remediation plans. Working with the parent company and external auditors to assess the severity and impact of any deficiencies that cannot be remediated prior to the reporting date
  • In addition to financial reporting controls and processes, the above responsibilities also include ensuring the adequacy and reasonableness of information technology general control (ITGC) risk assessments and the related IT control matrices
  • As needed, assisting with the development and implementation of new policies and/or amendment of existing policies, and supporting the Management team with training of relevant personnel in respect of these policies
  • Managing co-sourced service providers when engaged as subject matter specialists or supplemental resources
  • Leading or assisting with other internal control projects from time to time


Education and experience

  • CPA or other professional accounting designation
  • 5+ years of experience in accounting, auditing, internal controls or financial reporting

Technical skills

  • Strong knowledge of and experience with internal controls over financial reporting, including experience working with Sarbanes-Oxley (SOX) internal controls requirements
  • Familiarity with International Financial Reporting Standards (“IFRS”)
  • Experience with and adequate understanding of information technology general controls as well as automated controls and system-generated reports
  • Knowledge of financially relevant/SOX applications, GRC/SOX management tool, etc. is an asset
  • Fluent in French and English

Behavioral skills

  • Ethics and integrity
  • Strong communication and interpersonal skills
  • Strong analytical skills