We are looking for a highly motivated IT Governance, Risk and Compliance Analyst well versed in IT SOX and IT General Controls. The position will be assisting all IT SOX and Compliance initiatives and ensure compliance for Technology Applications, Programs and Projects. The person will collaborate across IT, business and Internal / External Audit teams to develop controls and processes supporting the security of our operating environment and our software products. We are looking for someone capable of seeing the big picture, able to prioritize many high priority projects simultaneously, and identify and implement process efficiencies along the way.

• Support and manage IT General Controls, IT Risk Control Matrix, and all IT Compliance related activities to ensure they are well established, documented, and followed. This includes creating and administering training and awareness programs for control owners and end users.
• Assist Internal Audit team in documenting and reporting control deficiencies upon discussion with owners, Internal Auditors and collaborate with owners regarding recommendations to address the root cause of issues and remedial actions.
• Support detailed testing of controls to ensure risks are appropriately identified, associated audit procedures are applied, and related controls are designed and operating to mitigate the identified risks.
• Facilitate control walk through activities and help develop test procedures to test IT controls with control owners.
• Establish, track and provide updates on IT SOX related initiatives to Management.
• Collaborate with IT control owners to ensure timely completion of Quarterly, Half-yearly and periodical controls and compliance.
• Review and help refine controls and compliance processes and identify opportunities to ensure proactive management and mitigation of Risks.
• Partner closely with cross-functional teams including Infrastructure, IT Applications, Business, Finance, and Internal/External Audit to ensure IT SOX and compliance requirements are being met.
• Ensure new software programs meet compliance requirements before they are made operational.
• Work with auditors as appropriate to keep audit focus in scope, maintain excellent relationships with audit teams and provide a consistent perspective that continually puts the IT in its best light.
• Provide guidance, evaluation and advocacy on audit responses.
• Collaborate with key stakeholders at all levels of the organization to confirm, verify and address audit findings, control deficiencies and remediation plans
• Complete on demand SOX related requests

• Knowledge of regulatory requirements such as SOX, GDPR and CCPA
• Bachelor's degree in IT or related field required
• Excellent communicator
• Collaborative in nature
• Ability to operate when requirements are not clear and manage dynamic changes to environment
• Experience 4 - 6 years of experience in managing and working with Internal Auditors, External Auditors and with SOC controls
• GRC tools knowledge is a plus
• Knowledge of information security risk management frameworks and compliance practices.
• Excellent interpersonal, communication, and presentation skills, including formal report writing experience.
• Operate with a high degree of independence with regard to project management activities, including development of project plans and budget/resource estimates.
• Introduce / reinforce standardized work i.e. develop and deploy standard processes, KPIs, governance
• Complex business environment i.e. with regular changes to the scope (Mergers & Acquisitions), different stakeholder goals, global and local approaches
• Multi-tasking and setting priorities i.e. ensuring the priorities are aligned and respected across the BU