IT SOX&Risk Mgmt Analyst
Gulfstream Aerospace Corporation•Savannah, GA
2d
About The Position
Under general supervision, supports the IT governance function with an emphasis on Sarbanes Oxley (SOX), Risk Management, and Internal Audit. The position works closely with accounting on SOX control testing, reporting and remediation plans. It also works closely with the business and IT on internal audit, internal assessments, establishing controls, continuous process improvement, and remediation plans. Monitors compliance with operating policies and procedures that affect both IT and the company as a whole.
Requirements
- Bachelor's Degree in IT related area, Business Administration required or equivalent combination of education and experience sufficient to successfully perform the essential functions of the job
- 5 years of Finance, Accounting, or Information Technology functions or relevant experience
- Ability to translate complex technical vulnerabilities into business impacts
- Risk Management experience (Risk Assessments, Variances, Exceptions)
- Control Compliance efforts
- Problem Solving and Data Analytics experience
- People skills to include team player, collaboration, relationship building, influencing, active listening, translation of technical terms
- This job requires one to be able to read, write, speak, and understand the English language.
Nice To Haves
- Nexpose application experience
- Python and SQL experience
- NIST Control Frameworks understanding
- Strong Excel skills
- Strong PowerBI skills
- Hardening Standards experience establishing baselines
- Advanced degree or certification desirable
- Masters Degree may offset one year where a PhD in related field may be used to reduce work experience by two years.
Responsibilities
- Support Annual IT SOX Effort and annual Internal Audit Efforts
- Working with Accounting, define the annual IT SOX audit plan and the Internal Audit Plan
- Coordinate the scheduling of IT audits with Accounting, IT Management, Process Owners and other interested parties
- Report interim and final audit findings and recommendations
- Maintain open lines of communication with accounting, IT, and the business
- Meet all internal and external audit deadlines
- Operational Management Support of IT SOX and Cyber Security
- Collaborate with process owners, Accounting, and Internal/External Audit, and other experts to manage tasks
- Regularly evaluate new or revised processes/controls to ensure they are operating effectively
- Obtain signoff from management of the revised processes within each manager’s area of responsibility
- Maintain a library of project documentation
- Prepare and deliver training workshops, sessions, materials, and presentations to assist process owners, employees, and management with transition from old processes or controls to new ones
- Regularly report progress to management team, stakeholders and other parties
- Manages Patch and Vulnerability Team (PVT) efforts
- Reports PVT Metrics
- Manages Risk Assessments process
- Monitors compliance with organization policies and standards
- Identifies opportunities that use information security methodologies and / or controls to improve processes, documentation, or other areas of security related performance
- Perform other duties as assigned
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
Upload and Match Resume
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
