Director IT Risk and SOX Compliance - United States

Location Details: Tempe or USA Remote · At GoDaddy the future of work looks different for each team. Some teams work in the office full-time, others have a hybrid arrangement (they work remotely some days and in the office some days) and some work entirely remotely. · This positi ...

Job description

Location Details: Tempe or USA Remote

At GoDaddy the future of work looks different for each team. Some teams work in the office full-time, others have a hybrid arrangement (they work remotely some days and in the office some days) and some work entirely remotely.

This position may be a hybrid or fully remote position, as decided by your manager. If designated as hybrid, you'll divide your time between working remotely from your home and an office location, so you should live within commuting distance. If designated as remote, you'll be working remotely from your home and may occasionally visit a

GoDaddy office to meet with your team for events or meetings. Your hiring manager can share more about this role's hybrid or remote designation.

This position is not eligible to be performed in Alaska, Mississippi, North Dakota, or the Virgin Islands.

GoDaddy is not currently considering candidates for this role in California, Seattle, or NYC.

Join our team

GoDaddy is seeking an accomplished Director of IT Risk and SOX Compliance to own the design, execution, and continuous improvement of our IT General Controls (ITGCs) framework supporting enterprise-wide SOX compliance.

Serving as the strategic link between Corporate Technology, Internal Audit, and external auditors, you will proactively identify emerging risks, orchestrate effective remediation strategies, and safeguard the integrity of our financial reporting.

This is newly crafted role, where you'll not only drive compliance requirements but build how IT risk is managed across our organization. You'll have the autonomy to develop strategy, the resources to inspire change, and the platform to make a measurable impact on our organization.

Apply today and help GoDaddy build a world-class IT risk and compliance program.

What you'll get to do...

• Develop IT risk strategy – Go beyond control execution to define how IT risk is identified, assessed, and led enterprise-wide
• Serve as the control build authority – Establish governance standards, frameworks, and guidelines that protect business operations and financial integrity
• Drive process transformation and champion automation initiatives – finding opportunities to strengthen control environments, implementing technology solutions that make controls more efficient and effective
• Deliver executive-level reporting on SOX IT posture, control efficiency, and risk trends
• Lead the complete IT SOX control framework across Access, Change, and Operations controls
• Lead the annual IT risk assessment process, including scoping and impact analysis, partnering closely with Internal Audit to plan walkthroughs, testing cycles, and readiness activities
• Assess IT control deficiencies with excellent judgment and settle appropriate severity classifications
• Drive and validate remediation plans across multi-functional technology teams, establish and maintain standards for evidence quality and control documentation
• Facilitate and quality-assure user access reviews and other detective monitoring controls
• Lead and mentor a team of SOX Analysts, encouraging a culture of accountability, continuous learning, and high performance

Your experience should include...

• 10+ years' experience in IT risk, SOX compliance, IT audit, or GRC Partnering with Internal Audit to plan SOX IT testing and perform SOX readiness assessments. With deep technical expertise in IT General Controls (ITGCs) and COSO frameworks
• Excellent judgment around deficiency classification and risk evaluation and impact analysis. Able to evaluate IT SOX control deficiencies with a track record of optimally driving remediation efforts across technology organizations
• Validated experience handling audit relationships with Big 4 or equivalent external audit firms
• Superb communication skills with the ability to influence partners and present expertly to executives
• Hands-on experience implementing and maintaining effective ITGCs for SOX compliance. Facilitate and QA user access reviews and other detective monitoring controls

We've got your back...  We offer a range of total rewards that may include paid time off, retirement savings (e.g., 401k, pension schemes), bonus/incentive eligibility, equity grants, participation in our employee stock purchase plan, competitive health benefits, and other family-friendly benefits including parental leave. GoDaddy's benefits vary based on individual role and location and can be reviewed in more detail during the interview process.

We also embrace our diverse culture and offer a range of Employee Resource Groups (Culture). Have a side hustle? No problem. We love entrepreneurs Most importantly, come as you are and make your own way. 

About us...  GoDaddy is empowering everyday entrepreneurs around the world by providing the help and tools to succeed online, making opportunity more inclusive for all. GoDaddy is the place people come to name their idea, build a professional website, attract customers, sell their products and services, and manage their work. Our mission is to give our customers the tools, insights, and people to transform their ideas and personal initiative into success. To learn more about the company, visit About Us. 

At GoDaddy, we know diverse teams build better products—period. Our people and culture reflect and celebrate that sense of diversity and inclusion in ideas, experiences and perspectives. But we also know that's not enough to build true equity and belonging in our communities. That's why we prioritize integrating diversity, equity, inclusion and belonging principles into the core of how we work every day—focusing not only on our employee experience, but also our customer experience and operations. It's the best way to serve our mission of empowering entrepreneurs everywhere, and making opportunity more inclusive for all. To read more about these commitments, as well as our representation and pay equity data, check out our Diversity and Pay Parity annual report which can be found on our Diversity Careers page.

GoDaddy is proud to be an equal opportunity employer. GoDaddy will consider for employment qualified applicants with criminal histories in a manner consistent with local and federal requirements. Refer to our full EEO policy.

Our recruiting team is available to assist you in completing your application. If they could be helpful, please reach out to  

Colorado Residents: In any materials you submit, you may redact or remove age-identifying information such as age, date of birth, or dates of school attendance or graduation. You will not be penalized for redacting or removing this information.

GoDaddy doesn't accept unsolicited resumes from recruiters or employment agencies.