IT SOX Program Lead

Additional Location(s): US-MN-Arden Hills; US-MN-Maple Grove

Diversity - Innovation - Caring - Global Collaboration - Winning Spirit - High Performance

At Boston Scientific, we’ll give you the opportunity to harness all that’s within you by working in teams of diverse and high-performing employees, tackling some of the most important health industry challenges. With access to the latest tools, information and training, we’ll help you in advancing your skills and career. Here, you’ll be supported in progressing – whatever your ambitions.                

About the role:

Boston Scientific is seeking an IT SOX Program Lead to oversee and enhance the company’s IT SOX, IT Internal Controls, and Governance, Risk, and Compliance (GRC) programs. This critical role focuses on safeguarding and enabling Boston Scientific’s business operations while fostering cross-functional collaboration.

This role extends beyond the Cybersecurity team, emphasizing collaboration across IT and building strong relationships throughout Boston Scientific and its subsidiaries. The IT SOX Program Lead will manage SOX IT audits and work closely with Engineering, Finance, IT, and other key stakeholders to ensure compliance with SOX requirements.

At Boston Scientific, we value collaboration and synergy. This role follows a hybrid work model requiring employees to be in our local office at least three days per week.

Boston Scientific will not offer sponsorship or take over sponsorship of an employment visa for this position at this time.

Key Responsibilities:

• Lead IT SOX compliance efforts, encompassing IT General Computer Controls (ITGC), Segregation of Duties (SOD) controls, and application controls. Ensure processes meet regulatory standards and align with best practices for the medical device industry.
• Perform comprehensive control walkthroughs, producing high-quality documentation and conducting rigorous quality assurance across all IT SOX areas. Confirm control evidence meets criteria for accuracy, completeness, and precision.
• Offer specialized knowledge in evaluating, designing, and implementing ITGCC and application control measures to strengthen organizational internal controls.
• Identify and resolve gaps in IT Automated/Application Controls (ITAC), working collaboratively with management to implement corrective actions and escalate significant issues to senior leadership when necessary.
• Support system upgrades, enhancements, and new deployments by ensuring that internal controls over financial reporting are seamlessly integrated into evolving processes and technology.
• Develop and execute audit plans targeting IT and technology-related risks, such as cybersecurity, privacy, and business continuity. Assess changes to products, systems, and processes for compliance and risk mitigation.
• Collaborate with business and IT stakeholders to analyze audit results, determine root causes, and implement actionable remediation plans while preserving objectivity and fostering positive relationships.
• Prepare clear and impactful audit reports, framing observations within the context of the medical device industry. Deliver practical recommendations and insights to enhance risk management and operational effectiveness.
• Apply advanced knowledge of security protocols, privacy frameworks, and agile methodologies to navigate and address emerging challenges in IT compliance.

Required Qualifications:

• Bachelor’s degree in technology, finance, accounting or IT related discipline.
• 6+ years of professional experience in a similar role, preferably with a "Big 4" firm or equivalent.
• 6+ years of experience in SOX scoping, risk assessments, executive presentation preparation, staff supervision, and coordination with external auditors.
• 2+ years of experience with SOXHub, AuditBoard, or similar GRC platforms.

Preferred Qualifications:

• Certified Public Accountant (CPA), Certified Internal Auditor (CIA), or Certified Information Systems Auditor (CISA) preferred.
• Exceptional attention to detail and organizational skills to drive change and effectively prioritize deadlines.
• Strong analytical and problem-solving capabilities.
• Proven ability to collaborate with technical and business teams to deconstruct complex problems and develop actionable solutions through process improvements or innovative technologies.

Requisition ID: 596279

As a leader in medical science for more than 40 years, we are committed to solving the challenges that matter most – united by a deep caring for human life. Our mission to advance science for life is about transforming lives through innovative medical solutions that improve patient lives, create value for our customers, and support our employees and the communities in which we operate. Now more than ever, we have a responsibility to apply those values to everything we do – as a global business and as a global corporate citizen.

So, choosing a career with Boston Scientific (NYSE: BSX) isn’t just business, it’s personal. And if you’re a natural problem-solver with the imagination, determination, and spirit to make a meaningful difference to people worldwide, we encourage you to apply and look forward to connecting with you!

At Boston Scientific, we recognize that nurturing a diverse and inclusive workplace helps us be more innovative and it is important in our work of advancing science for life and improving patient health. That is why we stand for inclusion, equality, and opportunity for all. By embracing the richness of our unique backgrounds and perspectives, we create a better, more rewarding place for our employees to work and reflect the patients, customers, and communities we serve. 

Boston Scientific Corporation has been and will continue to be an equal opportunity employer. To ensure full implementation of its equal employment policy, the Company will continue to take steps to assure that recruitment, hiring, assignment, promotion, compensation, and all other personnel decisions are made and administered without regard to race, religion, color, national origin, citizenship, sex, sexual orientation, gender identify, gender expression, veteran’s status, age, mental or physical disability, genetic information or any other protected class.

Boston Scientific maintains a prohibited substance free workplace. Pursuant to Va. Code § 2.2-4312 (2000), Boston Scientific is providing notification that the unlawful manufacture, sale, distribution, dispensation, possession, or use of a controlled substance or marijuana is prohibited in the workplace and that violations will result in disciplinary action up to and including termination.

Please be advised that certain US based positions, including without limitation field sales and service positions that call on hospitals and/or health care centers, require acceptable proof of COVID-19 vaccination status.  Candidates will be notified during the interview and selection process if the role(s) for which they have applied require proof of vaccination as a condition of employment.  Boston Scientific continues to evaluate its policies and protocols regarding the COVID-19 vaccine and will comply with all applicable state and federal law and healthcare credentialing requirements.   As employees of the Company, you will be expected to meet the ongoing requirements for your roles, including any new requirements, should the Company’s policies or protocols change with regard to COVID-19 vaccination.

#LI-Hybrid