Lead IT Assurance Analyst

About The Position

Requirements

• Requires a Bachelor's degree and 5 – 7 years of related experience. Or equivalent experience acquired through accomplishments of applicable knowledge, duties, scope and skill reflective of the level of this position.
• Strong control background in both IT SOX and SOC 2 highly preferred.
• Knowledge of Microsoft Office; Microsoft Project; Microsoft Visio
• Experience with Data Analysis; Project Management
• Intermediate - Seeks to acquire knowledge in area of specialty
• Intermediate - Ability to identify basic problems and procedural irregularities, collect data, establish facts, and draw valid conclusions
• Intermediate - Ability to work independently
• Intermediate - Demonstrated analytical skills
• Intermediate - Demonstrated project management skills
• Intermediate - Demonstrates a high level of accuracy, even under pressure
• Intermediate - Demonstrates excellent judgment and decision making skills
• Intermediate - Ability to communicate and make recommendations to upper management
• Intermediate - Ability to drive multiple projects to successful completion

Nice To Haves

• Certified Information Systems Auditor (CISA) preferred
• Certified in Risk and Information Systems Control preferred

Responsibilities

• Leads the gathering and organization of assessment data and results to support risk reporting and monitoring processes.
• Advises, designs, and/or validates the status of IT controls and processes and assists in the design of corrective actions to address control deficiencies.
• Consults with control owner(s) to innovate and implement controls to minimize/mitigate risks, vulnerabilities and threats to IT as well as improve overall control design
• Ensures stakeholders incorporate new controls and/or updates to controls into testing
• Work closely with key stakeholders within IT to understand the overall business environment, processes, and procedures to design, build and maintain systems of controls across IT functions
• Understands and assesses levels of risk and compliance (deriving from external and internal threats) across the enterprise
• Maintain departmental work process for IT controls
• Interface with business control personnel and provide technical guidance
• Communicates, consults, and assists in remediation of control findings and gaps with IT and business stakeholders
• Develops and/or matures metrics (KRI & KPI) to deliver reports and presentations to various levels of management personnel
• Maintains risk register with risk treatment plans
• Perform assessments of an IT Risk Acceptance request to identify risks and mitigating controls as well as follow-up on necessary approvals
• Has the ability to determine if proposed technology solutions have cross-functional impact or risks to other units and to identify areas of efficiency
• Manages stakeholders, identify, and manages issues and risks
• Performs other duties as assigned
• Complies with all policies and standards

Benefits

• competitive pay
• health insurance
• 401K and stock purchase plans
• tuition reimbursement
• paid time off plus holidays
• a flexible approach to work with remote, hybrid, field or office work schedules