General Position Summary:
Columbia Sportswear Company continues to evolve at a rapid clip, responding to external global dynamics as well as transforming our internal processes and systems to drive growth. In this environment of fast and significant change, it's critical for our risk management and internal controls programs to keep pace. Our Global Financial Compliance (GFC) team plays an important role in partnering with the business and management to design and deploy a Sarbanes-Oxley (SOX) program that mitigates the risk of material misstatement, while effectively responding to ongoing changes and shifts in dynamics. Our program affects a variety of critical stakeholders – including the Audit Committee, Chief Executive Officer, Chief Financial Officer, Chief Accounting Officer, Chief Information Officer and other members of the leadership team – as well as the investor community that relies on the accuracy and completeness of the financial information we report.
Role Overview
As a Senior IT Compliance Analyst, you will support the Columbia Global Financial Controls (GFC) team in executing and maintaining an effective SOX IT compliance program. This role is primarily executionfocused, with responsibility for scheduling and conducting walkthroughs, preparing SOX test documentation, evaluating evidence, and documenting IUCs, under the guidance and review of a Manager or Senior Manager.
You will work closely with IT, Finance, and Accounting stakeholders to understand IT processes supporting financial reporting, identify risks, and assess IT control design and operating effectiveness. This role is well suited for professionals with 3–5 years of experience in IT audit or IT SOX testing who are comfortable working independently while adhering to established testing guidance and review protocols.
Walkthroughs & Process Understanding
- Schedule and conduct SOX walkthrough meetings with IT control owners and control performers across multiple IT processes.
- Develop a working understanding of the company's technology environment, key systems supporting financial reporting, and associated IT risks.
- Obtain and document a clear understanding of:
- Control objectives and execution steps
- Key applications, reports, interfaces, and dependencies
- Control frequency, evidence retention, and responsible roles
- Update and maintain process narratives, flowcharts, and Risk & Control Matrices (RCMs) to reflect current state based on walkthrough discussions.
- Identify and flag changes in process, system, or control design for timely escalation.
Required
Qualifications & Experience
- 3–5 years of experience in IT Audit, IT SOX Compliance, IT Risk, or Internal Audit.
- Hands-on experience with:
- IT General Controls (Access Management, Change Management, IT Operations)
- Scheduling and conducting walkthroughs
- Preparing SOX test documentation subject to management review
- Sample and IUC documentation
- Strong understanding of SOX internal control concepts and audit evidence requirements.
- Effective written and verbal communication skills.
Preferred
- Experience using Audit Board or other GRC tools.
- Exposure to external audit support or Big 4 audit environments.
- Pursuit or completion of CISA, CPA, or CIA.
This job description is not meant to be an all-inclusive list of duties and responsibilities, but constitutes a general definition of the position's scope and function in the company. 
