Refresco · 1 day ago
Manager, IT Governance, Risk and Controls
Tampa, FL
Full-time
Onsite
Mid, Senior Level
5+ years expRefresco is a leading global independent beverage solutions provider, and they are seeking a highly motivated and experienced IT GRC Manager to join their team. In this role, you will be responsible for maintaining and improving the IT governance, risk, and compliance program, focusing on SOX compliance, risk assessments, and third-party risk management.
Consumer GoodsFood and BeverageFood Processing
Responsibilities
Conduct comprehensive IT risk assessments, including identifying and analyzing potential threats and vulnerabilities across applications, infrastructure, and data
Develop and maintain risk registers, documenting identified risks, their potential impact, and mitigation strategies
Collaborate with IT and business stakeholders to prioritize and remediate identified risks
Assess impact of IT changes to policies, risks, controls, and governance process (including but not limited to disaster recovery, RCM)
Maintain and update the Risk and Control Matrix
Evaluate the design and monitor the execution of management's SOX controls
Participate in business process walkthroughs to identify application controls, reports, and ITGC dependencies/risks
Review SOC reports and map control deficiencies to relevant IT risks
Ensure all control evidence of operating effectiveness is maintained timely, with appropriate detail for all IT controls; own the development, reporting, completion of control remediation plans
Train and educate IT teams and control owners on the effective operation of controls
Identify the application controls, interfaces/batch jobs and reports key to supporting SOX business processes
Evaluate the design and effectiveness of application controls
Evaluate the design and effectiveness of controls intended to mitigate data transfer errors/incompleteness
Evaluate the design (completeness and accuracy) of reports used for key controls
Develop and implement a third-party risk management program
Monitor and manage risks associated with third-party relationships
Develop, maintain, and test the IT disaster recovery plan, inclusive of supporting audits and requests for understanding and evidence by 3rd parties
Perform cyber security posture evaluations
Design and execute strategies to evaluate the ICFR impact of cyber security incidents
Draft the appropriate disclosures regarding cyber security posture and cyber incidents and response as necessary
Ensure compliance with relevant regulations and industry standards (e.g., SOX, NIST)
Assist with internal and external audits
Develop and deliver GRC training to IT and business stakeholders
Qualification
Required
Advanced knowledge of SOX controls and compliance; experience implementing or improving SOX
Strong drive and organizational skills inclusive of project and program management
Ability to proactively, productively manage diverse stakeholder groups
Excellent knowledge of business process risks and controls in the manufacturing or consumer sectors preferred
Technical expertise in ERP system design and operation
In-depth knowledge of IT governance frameworks (e.g., COBIT, ITIL) and risk management methodologies
Excellent interpersonal and communication skills, verbal and written
Strong understanding of SOX requirements and IT general controls (ITGCs)
Ability to analyze and solve problems, results oriented
Able to prioritize work, and determine when necessary to switch priorities
Experience evaluating / governing SAP ITGCs
Education and Experience: Undergraduate degree in Accounting, Information Technology, Computer Science or related technical degree required
Certified Public Accountant (CPA), Certified Internal Auditor (CIA), Certified Information Systems Auditor (CISA), or Certified in Risk and Information Systems Control (CRISC) designation required (two or more preferred)
5+ years relevant work experience in public accounting or 6+ years industry required
3+ years working with SOX in the IT domain with or for a company listed on a US market required
Preferred
Excellent knowledge of business process risks and controls in the manufacturing or consumer sectors preferred
1.5+ years of IT Audit / IT GRC managerial role preferred
Benefits
Medical/Dental/Vision Insurance
Health Savings Accounts and Flexible Spending Accounts
Life and AD&D Insurance
Pet Insurance
Legal Benefits
401(k) Savings Plan with Company Match
12 Paid Holidays, Vacation, and Paid Time Off
Well-being Benefits
Discount and Total Reward Programs
Company
Refresco
Refresco is a global independent beverage solutions provider offering a wide range of products and packaging options.
10001+ employees
H1B Sponsorship
Refresco has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (9)
2024 (9)
2023 (18)
2022 (10)
2021 (6)
2020 (7)
Funding
Current Stage
Public CompanyTotal Funding
$432.76M2024-07-29Debt Financing· $432.76M
2022-02-22Acquired
2015-03-27IPO
Leadership Team
Aart Duijzer
Founder & CFO
Vincent Delozière
Chief Commercial Officer / ExCom member
Recent News
valorinternational
2025-10-12
2025-08-14
Company data provided by crunchbase