Apply before October 30, 2022 at email@example.com
The Senior IT Compliance Analyst is responsible for compliance with SOX and internal IT policies. This position will execute the planning and performance of assessments across various compliance areas. In addition, this position will work directly with the technical and business leadership to select, deploy, and validate IT controls to ensure compliance requirements are maintained. Compliance reviews could consist of IT General Controls as well as selected application or special project reviews. Reviews can also cover areas such as application controls, logical access controls for applications, operating systems and databases, backup and recovery procedures, change controls, pre and post deployment assessments, user administration, perimeter security, network/application architecture, and selected configuration management controls on technical platforms such as VPNs, VMWare, Windows Server 20XX, AIX-UNIX, Linux and Cisco firewalls.
Monitors activities of assigned IT controls to ensure compliance with internal policies and procedures including monthly, quarterly and annual account and activity reviews.
Facilitates compliance with the internal control standards via regular monitoring of related activities.
Advises and consults for new company compliance, new technology deployments, SaaS/IaaS/ PaaS, MSP proposed deployments.
Works closely with the security team to address issues/concerns identified by them.
Conducts reviews and documents results based on defined controls and standards.
Reviews work products of junior team members and consultants to ensure that all review criteria are met and that the assessments are accurate.
Supervises multiple compliance reviews simultaneously with specific deadlines.
Prepares summaries of review results and communicates appropriately to management.
Manages the progress of remediation steps on identified control deficiencies.
Works with managers to ensure that deliverable schedules are met.
Adheres to internal standards, policies and procedures.
Ability to travel
Bachelor’s degree in MIS, Information Systems, Computer Science, Engineering or Accounting and minimum 2 years of experience in IT Compliance or IT Audit.
CISA, CIA, CPA, CISM, CISSP, MCP, MCSE, CCNA preferred, required within 2+ years from entering the job or other applicable for the job certifications.
General knowledge of the audit and control of operating systems – Windows, OS400 and Linux/UNIX, audit and control of databases – SQL and Oracle
Knowledge of the audit and control of ERP applications with a strong preference for JD Edwards, Timberline, Spectrum, and, if possible, Explorer and COINS
Nice to haves – understanding of virtualization, networking, and Active Directory