Internal Controls & Business Process Consultant

About The Position

Requirements

• Proven experience with Internal Control Systems, internal controls design, control environment assessment, or risk-based control frameworks.
• Experience identifying control gaps and designing practical remediation actions for business processes.
• Strong understanding of how controls are embedded into daily operations, approval flows, reporting, reconciliations, system access, documentation, and segregation of duties.
• Experience with retail business and e-commerce processes, ideally grocery, dark stores, food delivery, e-commerce, marketplaces, or multi-location retail operations.
• Experience with process mapping, current-state assessment, gap analysis, and TO BE process/control design.
• Experience working with small or mid-sized businesses where processes may be local, manual, partially documented, or inconsistently applied.
• Strong stakeholder interviewing, workshop facilitation, analytical, documentation, and presentation skills.
• Ability to translate complex findings into clear, structured, executive-ready recommendations.
• Ability to prioritize risks and control gaps based on business impact, likelihood, compliance/reporting relevance, and remediation complexity.
• Practical mindset: ability to balance control requirements with business reality, cost, speed, and implementation effort.

Nice To Haves

• Post-acquisition assessment, M&A integration readiness, or control environment setup for acquired entities.
• Internal audit, external audit preparation, or audit readiness projects.
• Familiarity with SOX, COSO, or similar frameworks is a plus.
• Experience with ERP systems, accounting, reporting, procurement, contract management, workflow, or BI/DWH systems.

Responsibilities

• Develop an understanding of current business processes and IT environment.
• Conduct interviews with local stakeholders and relevant parent company functions to define internal controls requirements, including IT, finance, procurement, inventory, legal/compliance, HR, reporting, operations, communications (PR/GR) and requirements of system owners.
• Perform risk assessment and assess AS IS ITGCs and business control gaps across four legal entities.
• Prioritize identified risks and control gaps based on impact, likelihood, compliance/reporting relevance, and remediation complexity.
• Design pragmatic and risk-based TO BE controls for key business processes and IT environment, considering business maturity, effort, and operational feasibility.
• Develop remediation scenarios and recommendations, including trade-offs between speed, cost, complexity, risk reduction, and long-term scalability.
• Prepare a remediation plan for each legal entity with prioritized actions, dependencies, owners, and implementation considerations.
• Present findings and recommendations in a clear, structured, management-ready format.

Benefits

• Temporary project-based consulting assignment
• part-time / fixed-term format