Senior SOX Program Manager

Who We Are: Ichor is a fast growing, dynamic company with a global presence. We develop leading fluid delivery systems and components for the semiconductor equipment fabrication industry. Since going public in 2016, we have continued to grow and evolve as an enterprise, both through organic growth as well as M&A. 

Why Are We Hiring: Our current Senior SOX Program Manager, who has been instrumental in establishing and strengthening our SOX compliance function, is retiring. We are looking for a dedicated professional to build upon this solid foundation, ensuring our compliance program is maintained and scales with our expanding business.

What’s In It for You: Work with a global, cross-functional team with broad authority to effect change and have input over the full-stack of compliance operations. This is a high-visibility role and will directly interface with all levels of the organization, including our leadership team.

About The Role: The Senior SOX Program Manager will lead and own Ichor’s global SOX compliance program, serving as the program management office (PMO). In this role, you will be both architect and builder. This role requires the strategic expertise to design an effective risk-based global program and a hands-on discipline to execute it and implement it. The role caters to those with an autonomous, builder mindset. Reporting to the Corporate Controller, you will have broad authority to collaborate across all levels and business units to maintain a world-class system of internal control. Beyond compliance, this high-visibility role is recognized as a key driver of business process improvement and a contributor to Ichor’s overall enterprise value. We value automation over manual effort and clarity over complexity. 

This position is on site at our Tualatin, OR location Monday-Thursday, with flexibility to work remotely on Fridays.

• Design & Lead: Own the end-to-end global SOX compliance program; lead the annual top-down, risk-based assessment (including financial, fraud, and ITGC risks) in partnership with the CFO, Corporate Controller, and external consultants.

• Governance & Planning: Own the annual SOX program plan, calendar, scoping, resource model (co-source), and governance cadence; provide periodic status reporting and issue escalation.

• Growth & Integration: Act as the PMO for SOX expansions and lead the integration of newly acquired entities, performing gap analyses and establishing control environments within M&A timelines.

• Entity-Level Controls: Evaluate and maintain entity-level controls (tone at the top, risk assessment, control monitoring, segregation of duties, IT governance) and align with COSO.

• Full-Cycle Testing: Plan and personally execute routine walkthroughs and testing of certain key controls to ensure design appropriateness and operating effectiveness.

• Documentation Management: Own and maintain the library of SOX documentation, including risk-control matrices (RCMs), process flowcharts, and narratives.

• Innovation: Proactively leverage AI and automation to enhance documentation accuracy, streamline control testing, and modernize risk assessment.

• External Audit Management: Serve as the primary point of contact for external auditors for the ICoFR audit (KPMG); manage the PBC process, coordinate annual walkthroughs, and ensure the timely delivery of all audit requirements.

• Deficiency Remediation: Assess control deficiencies, performing root-cause analysis and severity assessment outcomes (material weakness/significant deficiency), compensating controls where applicable, management action plans, and retesting to closure.

• Platform Ownership: Own and optimize FloQast for SOX management, leveraging its full suite for evidence gathering, certifications, and real-time dashboard reporting.

• IT Collaboration: Partner with the IT department on the design and evaluation of IT General Controls (ITGCs) and automated system configurations (ITACs) within Oracle Fusion.

• Enablement: Act as the resident expert and ongoing resource for control owners; conduct regular training and outreach to ensure a culture of compliance across the global organization.

• Process Improvement: Identify opportunities to simplify processes and improve operational efficiency while maintaining a robust control environment.

• Reporting: Assist the Corporate Controller in preparing updates for the Audit Committee and contribute to other SEC and public-company deliverables as needed.

Requirements:

• 6 to 8 years of experience in an SOX 404 compliance role, and at least 2 years in a management/project manager role
• BA/BS degree in Accounting, Finance, or related field

• CPA, CISA, or CIA certification 

   

• Strong understanding of accounting (U.S. GAAP) and COSO
• Detail oriented, highly productive, and strong communication skills; builder mindset
• Ability to work autonomously and independently throughout the organization.

Preferred Skills, Qualifications, and Experiences:

• Oracle Fusion ERP experience
• SafePaaS (Oracle Fusion GRC module) experience
• FloQast experience
• Public-company SOX 404 experience
• Strong program/project management experience
• Public accounting firm experience (Big 4 preferred)

• Manufacturing company experience

   

Benefits Include:

• 401(k) match up to 4%, immediately vested, with a self-directed brokerage option

• ESPP program, providing a 15% discount on share purchases

• PPO and HSA health insurance plans ($0 premium cost for individual HDHP plan)

• $600 company-provided HSA contribution

• Dental and vision insurance plans

• 3-weeks PTO

• Dependent care and healthcare FSA options

• Company-paid professional certification/CPE fees