IT Governance Manager

At Oxford, we own brands that evoke happiness ... from the relaxed island lifestyle of Tommy Bahama, to the sunny optimism of Lilly Pulitzer and bohemian spirit of Johnny Was ... because being happy never goes out of style.

About the Role: This position requires the individual to have a permanent remote office based within a 4-hour drive or 2-hour flight to the Oxford Atlanta HQ, and the ability to travel as needed (approx. 10%).

• Design and Maintain IT Controls: Review, design, and continuously improve IT General Controls (ITGCs) and application controls supporting SOX and broader IT compliance expectations.
• Control Testing & Readiness Reviews: Perform preliminary effectiveness testing of key IT controls before internal or external audit reviews, identifying gaps early and driving remediation plans.
• Control Framework & Documentation: Develop and maintain clear control narratives, process flow documentation, and evidence standards aligned to frameworks such as COBIT, NIST, and COSO. Establish and monitor key control performance indicators (KPIs) and related reporting to track ongoing health and remediation progress.
• Business Partnership & Education: Collaborate with business and technology teams to ensure control owners understand requirements, execution expectations, and evidence standards. Deliver periodic training and awareness programs to strengthen understanding and accountability among IT control owners.
• SOX Coordination: Partner closely with the Head of Corporate Controls and other finance stakeholders to ensure that IT controls are appropriately designed to support the integrity of financial reporting.
• Audit Support & Issue Management: Collaborate with IT control owners to validate readiness and address gaps early, ensuring testing by internal and external auditors is smooth and issue-free. Provide clear reporting to IT leadership and audit stakeholders on control effectiveness, remediation status, and emerging risks.
• Change Management & System Implementations: Engage proactively with technology teams on system changes, new implementations, and integrations to evaluate, design, and approve IT control impacts before go-live.
• Monitoring & Continuous Improvement: Track control performance metrics and leverage audit findings to enhance governance maturity, automation, and control efficiency. Drive automation of control execution and evidence collection to improve efficiency and reduce manual testing efforts.
• Special Projects & Emerging Risks: Support ad hoc projects involving data governance, cybersecurity alignment, or technology risk initiatives as the organization evolves. Partner with Data Security and other teams to ensure alignment between ITGCs, cybersecurity controls, and data protection standards.

• Strong communication skills and can clearly explain technical ideas.
• A collaborative mindset and enjoy working with IT, Finance, and Audit teams.
• The ability to balance controls with practical business needs.
• Good judgment about when to be strict and when to be flexible.
• Strong attention to detail and can juggle multiple tasks in a fast-paced environment.

• Bachelor’s degree in Information Systems, Accounting, or related field; advanced degree or certification (e.g., CISA, CRISC, CGEIT, CPA) preferred.
• 7–10 years of relevant experience in IT audit, IT governance, or SOX compliance—ideally including experience in a consulting or public company environment.  
• Strong understanding of ITGCs, application controls, and IT risk frameworks (e.g., COBIT, NIST, COSO).

What happens next?