Senior Manager Internal Controls

About the position Senior Manager Internal Controls – Stamford, CT (HYBRID) Be a part of a revolutionary change! At Philip Morris International (PMI), we’ve chosen to do something incredible. We’re totally transforming our business and building our future on one clear purpose – to deliver a smoke-free future. With huge change, comes huge opportunity. So, if you join us, you’ll enjoy the freedom to dream up and deliver better, brighter solutions and the space to move your career forward in endlessly different directions. Our success depends on people who are committed to our purpose and have an appetite for progress. Our beautiful HQ in Stamford, CT is just steps away from the Stamford Metro-North Train Station and easily accessible from NYC. With PMI’s journey towards a smoke-free future and a consumer-centric organization, the company faces new opportunities and risks. To safeguard the company’s business objectives, ensure its delivery against strategic opportunities, and protect the company against emerging uncertainties, a highly professional and industry-leading risk management and internal controls practice is required. The Internal Controls function within PMI maintains close business partnerships with functions and market management, acting as an advisor, assisting management with their responsibility to design, implement and maintain a robust internal controls framework and to comply with internal policies & procedures, through advisory and control localization activities. We are seeking a seasoned Internal Controls / Assurance leader with extensive experience in working with Microsoft Dynamics (Dynfo) and to a lesser extent SAP to strengthen our risk & control environment. The role will need to design, embed, and continuously improve business‑process and technology controls. The position will be a partner with various business functions, Risk & Assurance and PwC. A necessary skill set will be to translate evolving business models into scalable control designs, enable secure/efficient business processes, and steward SOX and operational compliance.

Responsibilities

• The strategy and execution of the Dynfo and SAP GRC business access and business process rule reviews.
• Designing, implementing, and maintaining access governance across SAP and Microsoft Dynamics (DynFO). This includes ensuring that access rights align with business roles and comply with SOX and ICFR requirements.
• Standardize and lead recertification cycles to confirm that all assigned accesses remain valid and appropriate. Exceptions must be documented and supported by compensating controls.
• Engagement and collaboration with Risk & Assurance and Information Security in the overall delivery of the SOX Program.
• The transformational activities to mature and enhance the company’s internal controls practices, aiming towards an efficient and lean organization.
• Convert business changes (new products, org/market entries, reorganizations, policy updates) into systemic control requirements and process updates within Dyno and SAP.
• Govern user access, Sensitive Access, and Segregation of Duties (SoD) across Dynfo and SAP, balancing risk reduction with business productivity.
• Convert business changes (new products, org/market entries, reorganizations, policy updates) into systemic control requirements and process updates within Dynfo and SAP.
• Standardize periodic access reviews, rule maintenance, and exception handling with compensating controls; champion continuous enhancement of rule coverage and quality. (Language aligned to our CCM/GRC program responsibilities.).
• Support Director of Internal Controls in preparing the periodic business and senior management updates.
• Socialize and elevate the Three Lines model responsibilities with clear expectations for Control Ambassadors, Control Owners, and Performers.
• Actively manage and contribute to employees’ engagement and wellbeing. Conduct / provide regular performance and capability assessment of the direct/indirect team members (MAP, talent reviews, etc.). For the direct reports, provide regular and transparent feedback and ensure a development plan is in place.

Requirements

• 10-15 years of experience in Internal Controls, Information Technology, Cybersecurity, Audit, IT Advisory / Consulting, Finance or a combination of the six.
• Relevant experience in: Microsoft Dynamics ERP (Dynfo) – REQUIRED!
• SAP security and governance
• Identity and Access Management
• Digitization and IT transformation projects
• Information Technology General Controls (ITGC)
• University level education in Accounting/Finance and/or Technology
• People management and mentoring skills (i.e. the latter comprising of taking team members along a transformational journey, translating strategy into operational reality at an individual team member level, identifying and addressing people challenges, etc.)
• Stakeholder management beyond the directly managed teams, including advocating and explaining the fun

Apply tot his job Apply To this Job