Devops Engineer with SOX compliance

Who are we looking for?

We are seeking a detail-oriented DevOps Engineer with SOX compliance expertise to join our growing team. This role will be responsible for implementing, maintaining, and monitoring DevOps processes and infrastructure while ensuring adherence to SOX ITGC (IT General Controls) and audit requirements. You will bridge the gap between engineering operations and audit-readiness, enabling the business to scale securely and efficiently.

Key Responsibilities:

• Design, implement, and maintain CI/CD pipelines in alignment with DevOps best practices and SOX compliance.
• Manage infrastructure as code (IaC) using tools such as Terraform, CloudFormation, or similar.
• Support cloud infrastructure (AWS, Azure, or GCP), container orchestration (Kubernetes, Docker), and monitoring/logging tools.
• Ensure DevOps processes meet SOX ITGC controls, including change management, access management, and logging/auditing.
• Collaborate with internal audit, security, and engineering teams to ensure compliance with internal policies and regulatory requirements.
• Automate security and compliance checks as part of the build/deployment lifecycle.
• Maintain documentation related to infrastructure, CI/CD processes, and SOX controls for audit readiness.
• Participate in periodic audit activities, including control testing, evidence collection, and remediation efforts.
• Identify and implement improvements to DevOps workflows that strengthen audit posture and reduce operational risk.

Technical Skills:

• 6+ years of experience in DevOps.
• Hands-on experience with CI/CD tools (e.g., Jenkins, GitLab CI, CircleCI, etc.).
• Proficiency in scripting (Bash, Python, etc.) and infrastructure automation.
• Experience with cloud services (AWS preferred) and containerized applications.
• Monitor and report on SOX control effectiveness and compliance status to senior leadership

Compliance Skills:

• Working knowledge of SOX compliance, especially ITGCs.
• Experience aligning DevOps workflows with audit and security standards.
• Familiarity with access controls, audit trails, and change management from a compliance perspective.

Preferred Qualifications:

• Bachelor of Engineering
• CPA, CISA, or CIA certification.
• Experience working in highly regulated industries (e.g., finance, healthcare, SaaS).
• Prior experience with cloud environments (AWS, Azure, GCP) and DevOps compliance.

Preferred candidate profile