Program Manager, IT SOX Compliance – Apple Ads

The Apple Ads team has an immediate opening for an IT SOX Compliance Program Manager and is looking for a driven and detail-oriented IT audit or SOX compliance professional who can understand complex technical environments, evaluate IT control risks, and partner effectively with engineering teams to design and improve scalable compliance processes. This is a hands-on role that will directly interact with engineering teams across Apple Ads, as well as cross-functional stakeholders across Apple, to support SOX compliance and strengthen the organization's IT control environment. This position requires a teammate and self-starter with experience working on cross-functional, tactical, and detail-oriented initiatives to achieve business, operational, and technical goals. The ideal candidate brings strong knowledge of SOX compliance methodologies, IT General Controls (ITGCs), and audit practices, along with the ability to operate effectively in fast-paced and highly technical environments. Minimum Qualifications 5+ years of experience in IT SOX compliance, IT audit, internal controls, or external audit Strong experience with SOX IT General Controls (ITGCs), including testing methodologies, control evaluation, documentation standards, and audit evidence requirements Experience partnering with engineering or infrastructure teams in large-scale technical or cloud-based environments Strong understanding of controls related to change management, access management, SDLC processes, databases, operating systems, and cloud infrastructure Proven ability to assess technical and compliance risks and drive remediation efforts across cross-functional stakeholders Strong communication, organizational, and project management skills Ability to navigate ambiguity, manage multiple priorities, and influence across technical and non-technical teams Bachelor’s Degree Preferred Qualifications Experience at a Big 4 accounting firm strongly preferred Experience supporting SOX compliance programs at a large public technology company preferred Experience working with cloud-based infrastructure and definition of IT controls Familiarity with GRC or compliance management tools Familiarity with compliance processes supporting large-scale distributed systems CISA, CISSP, or equivalent certification preferred