SOX Compliance Analyst

at TEKsystems, Inc
Location Irvine, CA
Date Posted November 27, 2019
Category Default
Job Type Full-time

Description

Here is the JD:

The Lead Information Security Compliance Analyst has comprehensive knowledge and experience in IT general controls as well as IT audit and compliance. This position is primarily responsible for planning, coordinating, and executing Information Security Compliance initiatives and partnering with Internal Audit/external auditors/compliance entities on special projects and audit support. The Lead, Information Security Compliance Analyst also provides pre-and post-Sales support in addition to the day to day compliance support requests coming from departments worldwide.

* Primarily responsible for planning, coordinating, and executing Information Security Compliance initiatives
* Plan for information security compliance initiatives to come up with project plans and timelines.
* Coordinate according to the project plans ahead of time to secure resources internal and external to the Information Security Compliance team
* Execute project plan within budgeted resources, such as time and costs
* Proactively report project status, identify issues and project changes, solicit feedback and decisions from project stakeholders, and identify deficiencies and resolutions
* Be flexible to support initiatives in multiple compliance disciplines, such as PCI, PII, HIPAA, SOX, SSAE 18, ISO, and GDPR, etc.
* Assist in the IT control remediation and continuous IT process and control improvements
* Independently plan, coordinate, and executive Information Security Compliance initiatives
* Escalate and report issues in a timely manner
* Partnering with Internal Audit/external auditors/compliance entities on special projects and audit support
* Partner with technical and non-technical teams on end-to-end IT and business process walk-through, identify IT general controls and application controls, and develop narratives and flowcharts
* Develop IT control matrix and determine relevant control components
* Develop and execute risk-based IT control assessments
* Execute test procedures and gather documents in support of audit/compliance testing
* Evaluate the effectiveness and efficiency's of IT general controls and application controls
* Communicate and confirm deficiencies
* Recommend remediation solutions and identify mitigation/compensating controls
* Leverage effort or work completed in other compliance disciplines
* Provides pre-and post-Sales support in addition to the day to day compliance support requests coming from departments worldwide
* Partner with Sales and Legal in pre-Sales contract negotiation to make sure Ingram Micro security requirements are maintained in the client services
* Partner with Sales and Clients in post-Sales support such as completing customer security assessment/questionnaire, conducting penetration testing and remediation effort
* Accepting and flexible to various time zones for meetings and conference calls with teams worldwide
* Address compliance support requests, such as acquisition and integration project support, IT project support, and security and compliance inquiries from departments worldwide
* Articulate Ingram Micro information security posture and requirements

What you bring to the role:
* BA/BS in Business Administration, Computer Science, Engineering or equivalent is required
* 8+ years of work experience in internal or external auditing
* Solid understanding of internal controls and IT control environments
* CISA certification is a must
* Knowledge in IT and/or IT auditing as well as experience with Big 4 public accounting
* Experience with a Big 4 public accounting firm
* Experience in the logistics and distribution industry is desirable
* Creative, analytic, self-motivated, have good interpersonal skills, work in a highly organized and efficient manner, strong time management skills, capable of working without supervision, multi-task and be a team player
* Effective oral and written communication skills
* Take projects to completion in a timely manner within budget
* Proficient in MS Office products, including Word, Excel, Visio, MS Project, and PowerPoint
* Technical - Proficient in various compliance requirements such as PCI, ISO, SOX, SSAE 18, GDPR

About TEKsystems:

We're partners in transformation. We help clients activate ideas and solutions to take advantage of a new world of opportunity. We are a team of 80,000 strong, working with over 6,000 clients, including 80% of the Fortune 500, across North America, Europe and Asia. As an industry leader in Full-Stack Technology Services, Talent Services, and real-world application, we work with progressive leaders to drive change. That's the power of true partnership. TEKsystems is an Allegis Group company.

Drop files here browse files ...