SOX Manager
Billcom · United States · Posted Jul 8, 2026
Apply on company site Track it in JobSkout
Innovate with purpose
At BILL, we believe in empowering the businesses that drive our economy. By replacing outdated financial processes with innovative tools, we help businesses—from startups to established brands—make smarter decisions and gain control of their operations. And we don’t stop there: we’re creating the future of financial automation so businesses can spend more time on what matters.
Working here means you become part of a vision-driven team that’s ready to tackle challenges and build cutting-edge solutions. We value purpose, drive, and curiosity—and we thrive in a fast-paced, ever-changing environment. Whether in one of our offices in San Jose, CA, Draper, UT, or in a remote-eligible role, BILLders collaborate to deliver real impact for businesses that need more time in their busy weeks.
BILL builds high performing teams and we seek to hire the best talent for every role. We're committed to building a workplace that fosters inclusion and diverse perspectives, valuing each person’s unique skills and experiences. We’d love to hear from you—you might be just what we’re looking for, whether in this role or another.
✨ Let’s give businesses more time for what matters.
The SOX Manager for Business Process and IT Application Controls (ITAC) is a critical, highly visible role on the Finance team responsible for the day-to-day execution and continuous improvement of the company’s Sarbanes-Oxley (SOX) Section 404 compliance program. As our business experiences tremendous growth, this individual will act as a key partner to business process and ITAC owners, ensuring a robust Internal Control over Financial Reporting (ICFR) environment and be responsible for working with different business stakeholders on maintaining the SOX controls.
The ideal candidate is a motivated, self-starting leader with a strong background in public accounting and internal controls. You will not just manage compliance, but actively drive process optimization, automation, and cross-functional risk management.
Essential Duties and Responsibilities
SOX Program Management Execution
Lifecycle Management: Lead the execution of the annual SOX compliance lifecycle for business processes and ITAC, including scoping, risk assessment, documentation (narratives, flowcharts, Risk Control Matrices), testing coordination, and deficiency remediation. Risk Assessment Scoping: Perform the annual qualitative and quantitative risk assessment to identify significant accounts, relevant assertions, and key controls, proactively adjusting the SOX scope to reflect business growth or process changes.
Audit Coordination: Serve as the business process and ITAC primary point of contact and liaison between management, control owners, Internal Audit, and the External Auditors for all SOX-related matters to ensure a co-ordinated, efficient, and cost-effective audit process.
Deficiency Management: Evaluate control deficiencies/process enhancements and partner closely with business process and ITAC owners to develop actionable remediation plans and track progress to ensure timely resolution.
Process Optimization Cross-Functional Partnership
Control Rationalization: Drive a continuous improvement mindset by identifying opportunities to streamline operations, eliminate redundant controls, and increase the utilization of automated controls or GRC tools.
Stakeholder Engagement: Act as a trusted advisor to business process and ITAC owners providing guidance, coaching, and training on control responsibilities.
Change Management: Proactively assess and manage the SOX impact of new financial systems, workflow updates, or corporate transformation initiatives.
Policy Standardization: Support the development and alignment of policies to ensure harmonized processes across all business units.
Audit Coordination Reporting
Audit Liaison: Serve as the business process and ITAC primary point of contact and liaison between management, control owners, Internal Audit, and the External Auditors for all SOX-related matters (e.g. walkthroughs, evidence gathering, follow-ups) to ensure seamless, cost-effective audit process.
PMO Auditor Management: Manage the SOX project timeline, tracking milestones and managing external auditors, as needed.
Status Reporting: Prepare regular status updates, control deficiency summaries, and remediation progress reports for management.
Required Professional Experience Qualifications
Education: Bachelor’s degree in Accounting, Finance, or a related field.
Big 4 Experience Requirement: Minimum of 6+ years of progressive experience in Big 4 public accounting (Audit or Risk Advisory), specifically focused on SOX 404 audits and ICFR for large accelerated filers.
Strong familiarity with high-growth environments (Fintech or technology sector experience is a major plus).
Certifications: Active Certified Public Accountant (CPA) or Certified Internal Auditor (CIA) is strongly preferred. CISA is a plus.
Technical Knowledge: Deep underst…