Manager, Internal Controls

DOOR is launching a company-wide initiative to refresh and strengthen our internal control environment. We have engaged third-party experts to perform an enterprise risk assessment, document our processes and procedures, refresh the Risk and Control Matrix (RCM), and identify and address control improvement opportunities across the organization.

We are hiring a Manager, Internal Audit & SOX to own this work from the inside. In the near term, you will partner closely with our external advisors to drive the program to completion. As the project concludes, you will take full ownership of the control environment — leading ongoing SOX compliance, monitoring control effectiveness, and continuously developing and enhancing controls as the business evolves.

This is a high-visibility role with direct exposure to senior leadership, the external auditors, and the Audit Committee.

This role begins as an individual contributor with the expectation of building and leading a team as the program matures.

DOOR is open to considering this opportunity as either a full-time employee position or a consulting/contract engagement, depending on the experience and background of the selected candidate. We welcome conversations with both professionals seeking a long-term career opportunity and experienced consultants interested in leading this critical initiative.

• Serve as the internal owner and day‑to‑day point of contact for the third‑party project, ensuring scope, timeline, and deliverables stay on track.
• Partner on the enterprise risk assessment and the documentation of processes, procedures, and the refreshed Risk and Control Matrix (RCM).
• Strengthen priority control areas, partnering with process and control owners to design, implement, and validate effective controls.
• Transition knowledge in‑house, ensuring the program is fully operational and sustainable once external support rolls off.

• Manage the annual SOX 404 program end to end: scoping, risk assessment, walkthroughs, control design and operating effectiveness testing, and deficiency evaluation.
• Maintain the RCM and control documentation, keeping narratives, flowcharts, and the controls inventory current as processes change.
• Evaluate and track deficiencies, driving remediation and validating that fixes hold over time.
• Coordinate with external auditors, managing PBC requests, walkthroughs, and reliance discussions to support an efficient audit.
• Report on control health to the VP Controller, CFO, and Audit Committee, including status, risks, and remediation progress.
• Own IT general controls across access management, change management, and IT operations, with particular focus on the Net Suite ERP environment.
• Partner with IT and Security on ITGC and systems controls across access management, change management, and IT operations, with particular focus on the Net Suite ERP environment.

• Perform operational and process audits beyond financial reporting to identify control, efficiency, and risk mitigation opportunities.
• Support enterprise risk management (ERM), helping maintain the risk assessment framework and connecting top risks to the control environment.
• Champion continuous improvement, leveraging automation and analytics to make controls more efficient and effective over time.

• 5+ years of progressive experience in internal audit, SOX/internal controls, or public accounting.
• Strong working knowledge of SOX 404, the COSO 2013 framework, and PCAOB auditing standards, with hands‑on experience designing and testing internal controls over financial reporting (ICFR).
• Demonstrated ability to evaluate control deficiencies and drive remediation to completion.
• Excellent communication and stakeholder‑management skills, with the ability to influence process owners and brief senior leadership.

• CPA (active license).
• In‑house SOX/controls experience at a public company, including controls design and implementation.
• Big 4 or national public accounting firm…