IT Domain GRC Specialist handling IT controls in Back Office domain across Oracle ERP SaaS. Collaborating with Finance, HR, and GRC stakeholders to ensure SOx compliance and risk management.
Responsibilities
Define, implement, and ensure the effective operation of IT controls within the Back Office domain
Collaborate with Finance, HR, Business Owners, and multiple GRC stakeholders
Document control designs for Back Office processes
Coordinate and support Control Operators in maintaining structured, accurate evidence for control effectiveness
Project‑manage dependencies across teams
Strengthen RBAC structures by reviewing roles, permissions, and access levels
Define cybersecurity and data-protection requirements for Back Office systems
Support readiness and response efforts for cybersecurity incidents
Identify, mitigate, and monitor cybersecurity risks related to Back Office activities
Guide teams on Secure Development Lifecycle (SDL) practices
Measure compliance with IT policies, set KPIs, identify gaps, and lead corrective initiatives
Prepare documentation for internal and external audits
Ensure SOx compliance through timely evidence collection
Requirements
ISACA (or equivalent) qualification such as CISA, CISM, or CGEIT
Minimum 2 years’ experience in IT control design, assurance, or auditing
Experience documenting and presenting control recommendations to management
Experience estimating remediation costs and distinguishing between one-off vs recurring expenses
Experience collaborating with external and internal auditors, with solid understanding of SOx compliance and Crown Jewel asset protection
Hands-on experience with Oracle ERP SaaS, including implementing controls for financial and operational processes
Strong proficiency in documenting risk and control mappings for audit review
Ability to map business processes, system workflows, and RBAC structures
Strong MS Office skills, especially Excel, PowerPoint, Outlook, and SharePoint
Governance, Risk & Compliance Officer focusing on data protection in a renowned international trading company. Overseeing GRC structures and compliance with data protection regulations.
Director of Logistics supporting Patrick Industries' logistics operations and ensuring regulatory compliance. Leading improvements in transportation efficiency and managing fleet operations across the U.S. and beyond.
Director of Risk & Compliance at Futurpreneur, leading credit adjudication and compliance for young Canadian entrepreneurs. Overseeing loan processes and coaching a team of professionals in a hybrid setting.
Regulatory Specialist I conducting regulatory activities for health care facilities across Florida. Prepares reports, manages files and provides support for QA reviews in the agency.
Regulatory Senior Systems Specialist overseeing compliance for facilities operations at Banner Health. Managing inspections, documentation, and regulatory staff while ensuring workflow integrity and safety standards.
Telco Regulatory Compliance Assistant supporting global regulatory team at Five9. Managing documentation, reporting, and compliance across various markets in the telecommunications sector.
Data Analyst in the compliance team at Sicredi, gathering and analyzing business data. Responsibilities include monitoring trends and enhancing data processes.
Regulatory Affairs Specialist implementing strategies for pharmaceutical compliance and ensuring adherence to global regulations. Collaborating with cross - functional teams to support product development and licensing.
Director of Governance, Risk & Compliance overseeing technology and AI compliance at MTM Health. Leading regulatory alignment and governance for cloud and software development in a healthcare context.