Sr IT Security Control Assessor

About The Position

Requirements

• You have a bachelor’s degree in Information Technology, Computer Engineering, or a related field, or equivalent experience (5+ years) in IT Audit, Compliance, or Risk Management.
• You have a minimum 3 years of experience in IT, preferably in IT Audit, IT Compliance or IT Security.
• You have 2+ years of experience in SAP or an equivalent ERP environment, with demonstrated knowledge of ERP security concepts.
• You have familiarity with IT compliance domains and control frameworks such as SOX, PCI, SOC, NIST CSF, ISO 27001/27002.
• You have strong analytical skills, attention to detail, and ability to meet strict deadlines.
• You have a strategic mindset with the ability to translate complex compliance requirements into actionable solutions.
• You bring a collaborative and team-oriented attitude with strong stakeholder engagement skills.
• You are a self-starter with sound judgment and a proactive approach to problem-solving.
• You bring natural curiosity for identifying root causes and driving continuous improvement.
• You have strong accountability, integrity, and commitment to results.
• You have a passion for learning and supporting team growth.
• You exhibit our core values

Nice To Haves

• You hold current certifications such as CISA, CISSP, or CISM are preferred.

Responsibilities

• Independently manage 25 of the organization’s ITGCs, ensuring controls are appropriately implemented, and maintained in alignment with SOX, NIST CSF, and internal standards.
• Collaborate with the Mgr IT Controls and Compliance, IT Compliance Team, Internal Audit, and control owners to ensure assigned controls are properly documented and supported with appropriate evidence for audit and regulatory review.
• Identify control deficiencies, facilitate root cause analysis, and partner with IT and business teams to develop and track remediation plans. Ensure sustainable resolution and prepare for re-evaluation.
• Assist in the design and refinement of IT controls for new systems, processes, and technologies. Provide input to ensure controls are scalable, effective, and aligned with enterprise risk objectives.
• Prepare reports and dashboards for management and auditors, highlighting control effectiveness, remediation status, and emerging risks.
• Build strong relationships with IT leaders, control owners, and compliance peers. Provide guidance and informal mentorship to junior team members.
• Contribute to the organization’s cybersecurity posture through active involvement in the NIST CSF 2.0 controls program, supporting implementation of best practices across the Identify, Protect, Detect, Respond, and Recover domains.

Benefits

• Flexible work programs that support work life balance including a hybrid work model of 4 days in the office
• Participation in our Total Rewards program with a competitive base salary, incentive plans, parental leave, health, dental, vision, retirement plan options with incredible employer match, generous paid time off plans, an engaging Wellness Program, and an Employee Assistance Program (EAP) with amazing resources
• On site Pub , access to cool brand clothing and swag, top events and, of course... free beer and beverages!
• We care about our People and Planet and have challenged ourselves with stretch goals around our key priorities
• We care about our communities, and play our part to make a difference – from charitable donations to hitting the streets together to build parks, giving back to the community is part of our culture and who we are
• Engagement with a variety of Business Resource Groups, which can provide volunteer opportunities, leadership experience, and networking through the organization
• Ability to grow and develop your career centered around our First Choice Learning opportunities
• Work within a fast paced and innovative company, meeting passionate colleagues and partners with diverse backgrounds and experiences