IT Systems Manager
Bethesda, MD
Technology – Security /
Remote
We are seeking a highly skilled IT Systems Manager to lead and enhance our IT infrastructure, operational processes, and compliance controls. The ideal candidate will have experience managing and ensuring adherence to key compliance frameworks, including SOX controls, IT General Controls (ITGC). This role involves collaborating with cross-functional teams to ensure robust IT governance, risk management, and compliance standards are met across our organization, preparing us for rigorous audits and operational success.
Primary Duties
- Development and Implementation of SOX Compliance Controls
- Create, implement, and maintain SOX compliance controls that align with the latest regulatory requirements.
- Ensure thorough documentation and sufficient evidence is prepared for SOX audits, demonstrating the design and operational effectiveness of controls.
- Assessment and Improvement of SOX Processes
- Identify and address gaps in SOX-related processes to strengthen governance and enhance risk mitigation strategies.
- Perform regular evaluations of existing controls to ensure ongoing effectiveness and regulatory alignment.
- Enhancement of IT General Controls (ITGC)
- Ensure the effectiveness of ITGCs to uphold the integrity of IT systems and data, focusing on critical areas such as access control, change management, and operational continuity.
- Integrate ITGCs into the broader enterprise risk management framework to promote unified risk oversight.
- Facilitation of Audits and Management of Risks
- Coordinate with internal and external auditors to facilitate SOX compliance audits, ensuring timely and accurate responses to audit findings.
- Conduct comprehensive risk assessments, collaborating with internal teams to address vulnerabilities and maintain compliance.
- Promotion of Security Culture and Ongoing Improvements
- Lead initiatives to establish and maintain an information security management system (ISMS) that supports SOX and ITGC compliance, including security, availability, process integrity, confidentiality, and privacy controls.
- Foster a culture of security and compliance through targeted training and awareness programs, while ensuring adherence to ISMS standards such as ISO 27001. Prepare detailed reports and executive summaries to communicate audit results and compliance status to leadership.
Minimum Qualifications
- Bachelor’s degree in Information Technology, Computer Science, or related field.
- Minimum 8+ years of experience in IT systems management with a focus on compliance and controls.
- Strong knowledge of SOX, ITGC, SOC2 Type 2 frameworks.
- Proven track record of successfully managing audit processes with regulatory bodies and third-party auditors.
- Excellent communication, analytical, and leadership skills.
- Ability to work in a dynamic, fast-paced environment and manage multiple priorities.
Preferred KSA’s
- Regularly review and enhance control documentation to ensure completeness and alignment with SOX requirements, thereby minimizing compliance risks.
- Proficient Management of IT General Controls (ITGC)
- Focus on ITGC categories such as user access management, change management, and incident response to strengthen IT processes that support financial integrity.
- Implement effective monitoring practices to ensure that ITGCs are operating as intended and that they adequately mitigate risks.
- Understanding of SOC 2 Type 2 Reporting
- Cultivate knowledge of SOC 2 Type 2 reporting principles and the Trust Services Criteria to ensure that the organization adheres to pertinent standards for system controls and security.
- Facilitate assessments that evaluate the effectiveness of controls over time, ensuring compliance and stakeholder confidence.
- Mapping Controls to Ensure Audit Readiness
- Develop proven methodologies for mapping controls and frameworks to maintain audit readiness and ensure continuous compliance with regulatory standards.
- Create and maintain detailed documentation of controls and processes to support auditors and streamline the audit process.
- Collaboration on Audit Engagements and Risk Management
- Actively engage with internal and external auditors to facilitate SOX compliance audits, providing timely and accurate responses to audit queries and findings.
- Conduct risk assessments regularly to identify operational vulnerabilities and compliance gaps, collaborating with cross-functional teams to implement corrective actions.
Physical Requirements
- Sitting for prolonged periods of time. Extensive use of computers and keyboard. Occasional walking and lifting may be required.
- Availability for on-call duties 24x7 as necessary.
Who We Are:
Aledade, a public benefit corporation, exists to empower the most transformational part of our health care landscape - independent primary care. We were founded in 2014, and since then, we've become the largest network of independent primary care in the country - helping practices, health centers and clinics deliver better care to their patients and thrive in value-based care. Additionally, by creating value-based contracts across a wide variety of health plans, we aim to flip the script on the traditional fee-for-service model. Our work strengthens continuity of care, aligns incentives and ensures primary care physicians are paid for what they do best - keeping patients healthy. If you want to help create a health care system that is good for patients, good for practices and good for society - and if you're eager to join a collaborative, inclusive and remote-first culture - you've come to the right place.
What Does This Mean for You?
At Aledade, you will be part of a creative culture that is driven by a passion for tackling complex issues with respect, open-mindedness and a desire to learn. You will collaborate with team members who bring a wide range of experiences, interests, backgrounds, beliefs and achievements to their work - and who are all united by a shared passion for public health and a commitment to the Aledade mission.
In addition to time off to support work-life balance and enjoyment, we offer the following comprehensive benefits package designed for the overall well-being of our team members:
Flexible work schedules and the ability to work remotely are available for many roles
Health, dental and vision insurance paid up to 80% for employees, dependents and domestic partners
Robust time-off plan (21 days of PTO in your first year)
Two paid volunteer days and 11 paid holidays
12 weeks paid parental leave for all new parents
Six weeks paid sabbatical after six years of service
Educational Assistant Program and Clinical Employee Reimbursement Program
401(k) with up to 4% match
Stock options
And much more!
At Aledade, we don’t just accept differences, we celebrate them! We strive to attract, develop and retain highly qualified individuals representing the diverse communities where we live and work. Aledade is committed to creating a diverse environment and is proud to be an equal opportunity employer. Employment policies and decisions at Aledade are based on merit, qualifications, performance and business needs. All qualified candidates will receive consideration for employment without regard to age, race, color, national origin, gender (including pregnancy, childbirth or medical conditions related to pregnancy or childbirth), gender identity or expression, religion, physical or mental disability, medical condition, legally protected genetic information, marital status, veteran status, or sexual orientation.
Privacy Policy: By applying for this job, you agree to Aledade's Applicant Privacy Policy available at https://www.aledade.com/privacy-policy-applicants