IT General Controls Analyst
About The Position
ITGC Analyst ensures strong, auditable IT controls across access management, change management, and computer operations. Reporting to the Director of PMO, the analyst is responsible for maintaining up-to-date General Computer Controls (GCC), conducting internal audits, and ensuring compliance with IT user access policies, Segregation of Duty (SoD), SOX, Computer Operations and IT Change Management policies. They will document Standard Operating Procedures (SOPs) for key controls and collaborate closely with both internal and external auditors. This role supports compliance (SOX, ISO 27001, etc.), coordinates audits, and drives remediation efforts across IT and business teams.
Requirements
- 2-4 years’ experience in IT auditing, internal auditing, external auditing of financial institutions or regulatory examination with thorough knowledge of practices, principles, and interrelationships with finance.
- Strong information technology foundation including infrastructure and cyber security risk, with an ability to identify risks and controls in regards to various IT related areas (e.g. security, operations, change management, etc.).
- Understanding and knowledge of Active directory, Windows OS, Oracle and SQL databases.
- Understanding of network infrastructure devices and capabilities including routers, firewalls, intrusion detection/prevention systems and wireless technology.
- Comprehension of IT general controls, application controls, and business process reviews.
- Requires skills in fact-finding, analysis, problem solving and decision-making.
- Detailed oriented with excellent project management, organizing and planning skills.
- Expert PC skills including but not limited to Excel, Word, Power Point, Adobe, and Outlook.
Nice To Haves
- Experience with COBIT, COSO and exposure to NIST SP 800-53 a plus.
- ACL, Tableau or SQL experience preferred.
Responsibilities
- Maintain and socialize the ITGC control framework aligned to standards (COBIT) and regulatory obligations (SOX).
- Coordinate annual control scoping and mapping (systems in scope, key reports, Information Produced by Entity (IPE), interfaces).
- Serve as primary point of contact for Internal Audit and external auditors on ITGC topics.
- Plan and coordinate walkthroughs, evidence requests, and sample selections; track deliverables end-to-end.
- Execute or coordinate periodic ITGC testing for Logical Access, Change Management, and Computer Operations.
- Validate completeness and accuracy of Information Provided by Entity (IPE) and key reports.
- Facilitate root-cause analysis for control deficiencies; define pragmatic remediation plans and owners.
- Work with Control Owners to update IT policies, standards, and SOPs tied to control requirements.
- Produce management reports on control health, testing results, and remediation progress.
Benefits
- 401(k) Plan
- Company 401(k) Matching Contributions
- Health Savings Account, Flexible Spending Account, and Dependent Care
- Telemedicine/ Mental Health Services
- Health Insurance
- Dental Insurance
- Vision Insurance
- Pet Insurance
- Supplemental Insurance (Aflac)
- Growth Opportunities
- Challenging and exciting work environment
- Costa Farms Scholarship
- Employee discounts on plants
- On-site gym with showers
- Subsidized on-site cafeteria, a quiet room, and indoor games
- Love Where You Work activities throughout the year
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
Education Level
No Education Listed
Number of Employees
1,001-5,000 employees
