Enterprise Controls and Assurance Senior Analyst

About The Position

Requirements

• Bachelor’s degree in Accounting, Information Systems, Finance, Cybersecurity, or related field
• 3–5+ years of experience in internal audit, risk advisory, compliance, or controls-related roles, with focus on IT
• Strong knowledge and experience with one or more frameworks: SOX, SOC 1 / 2, ISO 27001, NIST, FedRAMP
• Strong understanding of and experience with general IT controls (GITCs) and business process controls
• Proven experience working with auditors and regulatory bodies
• Strong analytical, critical-thinking and problem-solving skills
• Ability to identify and assess risk
• Ability to translate complex compliance requirements into actionable, effective controls
• Excellent written and verbal communication skills
• Attention to detail and strong organizational abilities
• Ability to manage multiple priorities in a fast-paced environment

Nice To Haves

• Professional certifications such as CPA, CISA, CIA, CRISC, or ISO 27001 Lead Implementer/Auditor
• Experience in public accounting or consulting (Big 4 or similar)
• Familiarity with GRC tools (e.g., Workiva, ServiceNow GRC, AuditBoard)
• Knowledge of cloud environments (AWS, Azure, etc.) and related compliance requirements

Responsibilities

• Design and document internal controls to support compliance with SOX, SOC 1 / 2, ISO 27001, NIST, and FedRAMP frameworks
• Maintain unified control framework library and control evidence request library
• Evaluate existing processes, assess risks, and identify control gaps, redundancies, and optimization opportunities
• Develop control narratives, process flows, and risk/control matrices (RCMs)
• Provide advisory support to business and technology teams on control requirements and best practices
• Translate regulatory and framework requirements into practical, scalable control solutions
• Conduct risk assessments and collaborate with control owners in defining risk mitigation strategies
• Support SOX compliance efforts including walkthroughs, testing coordination, issue identification, and remediation tracking
• Assist with SOC audits, ISO certification activities, and FedRAMP/NIST readiness initiatives
• Coordinate with internal/external auditors and provide guidance to control owners responsible for gathering required documentation and evidence
• Track control performance and remediation efforts to ensure timely resolution of issues
• Recommend enhancements to improve control efficiency and effectiveness
• Stay current on evolving regulatory requirements and industry trends
• Partner with IT, Security, Finance, and Operations teams to align control activities
• Communicate control requirements, risks, and findings clearly to stakeholders
• Support training and awareness efforts related to compliance and controls

Benefits

• Excellent time away from work programs
• Comprehensive wellness initiatives
• Recognition through competitive pay and benefits
• Commitment to community impact, including volunteer days and our charity, Dayforce Cares
• Opportunities for personal and professional growth