| Description | Role Overview The Director of Internal Controls is a senior leadership role responsible for designing implementing and maintaining a robust internal controls framework across the organization. As the Chief Audit Executive (CAE) this role provides independent assurance to executive management and the Board of Directors that internal controls are effective risks are being managed appropriately and organizational operations comply with applicable laws standards and ethical practices. The role will report directly to the CFO with a dotted line to the Chair of the Finance Audit and Investment Committee of the Board. This position is hands-on and strategic ideal for a professional who thrives in building control systems from the ground up with minimal direct staff and a focus on leveraging technology external resources and cross-functional partnerships. Key Responsibilities Internal Control Framework Design and implement a comprehensive internal controls framework aligned with COSO or equivalent standards. Develop and maintain an internal controls manual tailored to a non-profit mission-driven PRO operating under EPR regulations. Ensure internal controls are embedded into key operational processes including finance data reporting producer registration fee collection contracting and compliance monitoring. Risk Assessment & Governance Partner with CAA’s General Counsel to lead the annual enterprise risk assessment and identifying assessing and monitoring organizational risks throughout the year. Work with functional leaders (in collaboration with GC) to implement risk mitigation strategies. Evaluate inherent risks across finance accounting IT operations and compliance using a people-process-systems lens. Align risk assessments with the organization’s risk appetite recommending controls that balance performance and compliance. Conduct the annual fraud and cyber security risk assessment and update the risk assessment accordingly. Lead all fraud investigation and participate in all ethics fraud and other whistleblower complaints. Audit (on a defined frequency) the organization’s compliance with federal state and local laws including EPR legislation and other non-profit governance requirements. Audit Assurance Act as the Chief Audit Executive: + Develop and execute a risk-based internal audit plan across financial operational and other compliance areas + Perform internal audits or coordinate with third party auditors as needed + Assess control risk levels and financial assertions based on COSO framework + Report findings risks and recommendations to executive leadership and Audit Committee Policies Procedures Training Lead and develop policies associated with internal controls and audit functions. Establish a Center of Excellence (COE) to provide advisory services internally on guidance and best practices. Monitor segregation of duties conflicts and recommend mitigation strategies. Collaborate cross-functionally to address entity level risks cybersecurity tax and data governance. Develop and lead training programs to promote a culture of compliance accountability and ethical conduct across all levels of the organization Reporting to Leadership Define and deliver an annual audit master plan as part of the fiscal year planning process. Present testing results aggregated risk analysis and pass/fail outcomes to the CFO and Audit Committee. Track remediation plans and timelines with stakeholders ensuring accountability. Support the organization in other governance related policies as needed. Process & System Controls Collaborate with IT and operations to ensure proper access controls data integrity segregation of duties and cybersecurity protocols are in place and aligned with COBIT and ISACA standards/practices Partner with business units to ensure control points are built into new systems technologies and operational workflows Evaluate long-term adoption of a GRC platform (e.g. Workiva FloQast) to centralize evidence retention and streamline testing. Other duties as assigned. Skills & Competencies Use of computer and phone systems: The employee must be able to operate a computer use phone systems and type. This includes using multiple software programs and inquiries simultaneously required. Ability to operate independently develop frameworks from scratch and lead cross-functional collaboration Ability to operationalize frameworks into practical solutions. Strong leadership and ability to influence across all levels of the organization. Excellent communication skills with proven ability to educate and engage Board and staff. High integrity independence of judgment and strong ethical standards. Qualifications Advanced degree in Accounting or Finance required. Masters preferred. Non-profit experience highly recommended. 10+ years in internal controls audit compliance and risk management Experience as a senior internal control leader or Chief Audit Executive (CAE) in non-profit government or regulatory heavy environment. Deep understanding of internal controls framework (e.g. COSO) GAAP non-profit compliance and risk-based audit practices. Working understanding of COBIT ISACA frameworks. Track record of designing and leading internal control and audit programs from inception. Experience with leveraging AI and automation to address risk and optimize controls Preferred: Experience in multi-entity organizations Preferred: Experience with EPR environmental regulations or producer compliance programs Compensation & Other Information Location: Remote with potential for in person times Salary Range: Reports To: CFO Circular Action Alliance is an equal employment opportunity employer. All qualified applicants for employment will be considered without regard to race color religion sex (including pregnancy childbirth lactation and related medical conditions) national origin military or veteran status sexual orientation gender identity age or any other category protected by applicable federal state or local law. If you require accommodation as part of the application process please contact careers@circularaction.org listed below. |