Job Overview:
Rubrik is seeking a skilled and detail-oriented Salesforce SOX and SOD Analyst to join our dynamic IT team. The ideal candidate will play a pivotal role in ensuring that our Salesforce systems adhere to the Sarbanes-Oxley Act (SOX) and Segregation of Duties (SOD) compliance standards. The Salesforce SOX and SOD Analyst will collaborate with cross-functional teams to assess, enhance, and monitor internal controls related to Salesforce processes, data, and user roles.
Responsibilities:
SOD User Role Definition
- Work with various business stakeholders within the Rubrik Organization to review SOD, and finalize user roles within Salesforce to comply with SOX requirements
- Facilitate and drive all discussion related to SOD with business partners
- Document SOD changes in form of user stories, and coordinate implementation with internal IT developers
SOX and SOD Compliance:
- Post SOD implementation, conduct review of Salesforce configurations, user roles, and processes to ensure compliance with SOX and SOD regulations.
- Document all controls to safeguard the integrity of financial information stored and processed within Salesforce.
- Identify and mitigate risks associated with SOD conflicts in user roles.
Risk Assessment:
- Perform risk assessments related to Salesforce configurations, user access, and data handling.
- Identify and prioritize areas of potential risk within Salesforce systems and propose mitigation strategies.
Audit Coordination:
- Collaborate with internal and external auditors during SOX audits, providing necessary documentation and support.
- Facilitate walkthroughs and demonstrations to auditors, explaining the design and effectiveness of internal controls.
Documentation:
- Develop and maintain comprehensive documentation of Salesforce processes, controls, and configurations to support SOX and SOD compliance.
- Create and update process flow diagrams, control matrices, and related documentation.
Monitoring and Reporting:
- Establish monitoring mechanisms to track changes in Salesforce configurations, user roles, and data.
- Generate regular reports on SOX and SOD compliance status, identifying and addressing any deviations promptly.
Qualifications:
- Bachelor's degree in Computer Science, Information Systems, or a related field.
- Proven experience as a Salesforce Administrator with a focus on SOX and SOD compliance.
- Salesforce Administrator certification is highly desirable.
- In-depth knowledge of Sarbanes-Oxley Act and Segregation of Duties requirements and application to Salesforce environments.
- Strong understanding of Salesforce security controls, data governance, and audit trails.
- Experience in identifying and resolving SOD conflicts in user roles.
- Excellent analytical and problem-solving skills.
- Effective communication and collaboration abilities.