Our client is a newly Public company and they are looking for a Director of SOX Compliance. This person is responsible for the
design, implementation, and ongoing management of our client's program of
internal controls over financial reporting (ICFR) in compliance with
Sarbanes-Oxley (SOX) Section 404. As the company scales its defense technology
and signals intelligence platform and integrates acquired businesses, this role
is critical to building a robust, audit-ready controls framework that supports
the company's public company obligations and operational growth. Reporting to
the Chief Accounting Officer, the Director of SOX Compliance will partner
closely with finance, accounting, IT, operations, legal, external auditors, and
other external service providers to ensure that financial reporting risks are
properly identified and mitigated by controls that are well-designed,
effectively operating, and consistently enforced across all entities.

Responsibilities:

• 
  Own
  the end-to-end SOX compliance program, including developing, executing,
  and enhancing the Company’s SOX 404 compliance strategy and annual ICFR
  roadmap.
• 
  Lead
  SOX scoping, risk assessments, process mapping, and control design
  evaluations.
• 
  Develop
  and maintain process narratives, risk and control matrices, and process
  flowcharts across all financial reporting areas.
• 
  Coordinate
  walkthroughs with process owners and manage quarterly/annual SOX testing
  cycles, including the use of third-party testing service providers and
  ensuring alignment with external auditor ICFR audit procedures.
• 
  Serve
  as the primary liaison for evidence requests, issue resolution, and status
  reporting.
• 
  Identify
  control gaps and design new or enhanced controls across financial
  reporting processes including order-to-cash, procure-to-pay, payroll,
  financial close, and treasury.
• 
  Lead
  the remediation of identified control deficiencies and track management
  action plans to closure.
• 
  Provide
  control design guidance for new processes arising from ERP
  implementations, system migrations, business combinations or other process
  changes.
• 
  Develop
  phased roadmaps to bring acquired entities into scope of the HawkEye 360
  SOX program, and lead ICFR integration workstreams to ensure controls are
  designed and operating effectively prior to full scope inclusion.
• 
  Partner
  with IT and system owners to strengthen IT general controls, application
  controls, automated controls, and system governance.
• 
  Support
  cybersecurity-related control integration and ensure alignment with access
  management and change management best practices.
• 
  Participate
  in the assessment and implementation of controls addressing AI-enabled
  financial systems, model governance, and data integrity risks.
• 
  Develop
  internal controls supporting ESG reporting, including climate disclosures
  and operational sustainability metrics.
• 
  Monitor
  regulatory updates and proactively adjust internal control processes.
• 
  Build
  and deliver SOX training programs for control owners across finance,
  operations, IT, and program management, fostering a controls-conscious,
  compliance-oriented culture consistent with the company's obligations as a
  public company and government contractor.
• 
  Continuously
  improve the efficiency and effectiveness of the SOX program, leveraging
  technology and risk-based approaches where appropriate.
• 
  Prepare
  and deliver SOX status updates to senior leadership and the Audit
  Committee, including creating and preparing dashboards and
  analytics-driven reporting.

Requirements

• 
  Bachelor’s
  degree in Accounting, Finance, Business Administration, or related field;
  CPA, CIA, or CISA preferred.
• 
  10+
  years of SOX, internal audit, ICFR, or public accounting experience,
  including leadership responsibilities.
• 
  Strong
  understanding of SEC and PCAOB regulations, SOX 404 requirements, and ICFR
  best practices.
• 
  Experience
  owning or managing SOX programs at public companies or companies preparing
  for SOX compliance.
• 
  Deep
  knowledge of PCAOB auditing standards, COSO Internal Control framework,
  and SOX Section 404 requirements.
• 
  Expertise
  in SOX compliance, ICFR frameworks, internal controls, and risk
  assessment.
• 
  Experience
  with automated controls, ITGCs, cloud-based environments, and
  cybersecurity-aligned controls.
• 
  Familiarity
  with AI governance risks and emerging controls around automated financial
  systems.
• 
  Proficiency
  with SOX, audit, and GRC software; ERP experience (Costpoint preferred).
• 
  Strong
  analytical, documentation, project management, and communication skills.
• 
  Experience
  creating enhanced reporting, dashboards, or metrics for senior leadership
  and the Audit Committee.
• 
  Ability
  to manage multiple priorities in a fast-paced environment, meet tight
  deadlines, and collaborate effectively across departments.
• 
  High
  attention to detail with a commitment to accuracy, compliance, and
  continuous improvement.
• 
  Excellent
  analytical, organizational, project management, and communication skills.
• 
  High
  integrity and sound judgment in a regulated, national security
  environment.
• 
  Strong
  written communication skills for control documentation and remediation
  plans as well as for board materials.
• 
  Effective
  communicator who can distill complexity into actionable insights for
  senior leadership.

Desirable:
​​​​​​

• 
  Experience
  in a newly public company or with transitioning acquired entities into SOX
  compliance.
• 
  Prior
  Big 4 or national public accounting firm experience auditing publicly
  traded companies.
• 
  Experience
  implementing automated workflows, GRC tools, or scalable internal control
  systems.
• 
  Experience
  working in defense, national security, government contracting, aerospace
  or technology sectors.
• 
  Familiarity
  with FAR, CAS, indirect rate structures, and cost-reimbursable contract
  accounting.
• 
  Exposure
  to ESG reporting, sustainability metrics, and related control frameworks.