Security & Risk Management Analyst IV

Philadelphia, PA 19102

Posted: 04/30/2019 Category: Other Area(s) Job Number: 27572
  • Tech Risk and Controls Lead Location: Based in Philadelphia or Nashville (this is not a remote role).
  • Reporting to Head of Tech Risk and Controls.
  • The successful candidate will be responsible for representing IT management in the successful co-ordination of Internal and External IT audits, as assigned, which may include the including the annual SOX and or SOC2 audits.
  • The role holder will represent IT in the end to end management of the audits, from initial planning and agreement of the TOR, through co-ordination of the audit walkthroughs, advising on management action plans and tracking actions.
  • This role will suit a candidate with excellent stakeholder management skills and the ability to arbitrate between Audit and IT stakeholders as necessary.
  • The role will have global stakeholders and require the ability to manage them remotely.
  • The successful candidate will be organized with good attention to detail and the ability to work under pressure.

  • Hands on experience of executing an IT Audit – ideally as an IT Auditor.
  • Understanding of SOX and the nature of a SOX Audit.
  • Understanding of SOC2 and the nature of SOC2 reporting.
  • Experience of non-SOX IT Audits including project, governance and operational.
  • Co-ordination, planning and scheduling of on-site audit.
  • Producing management action plans in response to audit points.
  • Controls development and remediation.
  • Understanding of IT controls and the IT Audit process.
  • Producing reports, dashboard, steering group packs etc.
  • Maintaining and tracking detailed plans.
  • Understanding of IT Operations.
  • Working in a global organization Role.
  • Work with control owners and other key stakeholders to prepare for IT audits, internal and external.
  • Work with the internal and external audit teams to agreed detailed audit schedules and walkthroughs.
  • Prepare for and co-ordinate IT Audits including briefing of attendees, attendance at meetings, co-ordination of scheduling and review of management responses.
  • Provide insight into audit findings and coach others through the development of remediation plans.
  • Facilitate the development and documentation of controls in response to issues raised by audit.
  • Provide appropriate challenge to both Internal and External auditors.
  • Follow up open Audit points and work with the wider IT team to resolve.
  • Status reporting and MI for senior stakeholders.
  • Effective communication to all stakeholders.

  • Stakeholder management.
  • Questioning approach.
  • Coaching others involved in audits.
  • Strong planning and organizing.
  • Status reporting and presentation.
  • Attention to detail, Self-managing, Problem solving, Persistence, Facilitation, Communication, Analysis.
  • This is a senior role with a junior to supervise.
  • We need someone with team leadership experience.
  • The ideal candidate would have IT audit experience and IT Risk management experience.
For more information on this position, please contact our office at 877-782-3334

Send an email reminder to:

Share This Job:

Related Jobs:

Login to save this search and get notified of similar positions.