Senior Consultant in Risk Advisory handling vendor risk and compliance processes for clients. Collaborating with stakeholders and managing project deliverables on operational risk initiatives.
About the role
- IT Risk and Controls Testing Analyst assisting with compliance requirements and SOx control testing for IT. The role involves documentation, testing, and collaboration with stakeholders and external auditors.
Responsibilities
- The Risk and Controls Testing Analyst will be assisting with planning, and reporting on our compliance requirements across IT and ongoing work to ensure the organization can provide timely certification of compliance.
- The core focus will be the testing of IT General Controls (ITGC), Key Reports for SOx Compliance and other audit requirements.
- The role will require a clear testing timeline to be met, ensuring that any documentation is complete and accurate in order to satisfy external auditing from external parties.
- Perform the execution of the IT SOx annual plan, ensuring efficient and timely execution of all stages of the IT SOx program - Planning, Execution, Delivery & Reporting.
- Create and maintain all documentation relevant to IT SOx program such as walkthroughs, testing and controls evaluation.
- Participate and drive detailed control walkthroughs from an internal audit testing front.
- Review internal controls documentation and understand the key ITGC controls. Establish, plan, coordinate and deliver controls testing.
- Prepare and maintain detailed, high-quality working papers that document the testing strategy, samples selected, test results, and conclusions.
- Coordinate and implement testing of key IT controls (ITGCs and few application controls, Report Testing -as required), track completion, monitor status and continuous follow up with the process/system owners.
- Develop and maintain close working relationships with the IT management teams as well as external auditor, ensuring a deep understanding of key risks and processes of the organization.
- Understanding of SSAE 18 (SOC1 Reports).
- Ensure any internal control deficiencies are identified, reported, track remediation progress and re-tested.
- Ensure any control improvements are identified and shared.
- Support quarterly controls self-assessment process.
- Support the maintenance and upkeep of internal logs/trackers to ensure tracking and reporting.
- Identify, assess, and manage risks and issues.
- Work closely with external auditors to align on testing timelines and requirements.
- Facilitate and accelerate the testing process wherever possible.
- Address auditor queries and provide and ensure that the evidence documentation is provided in a timely manner.
- Communicate effectively with Control Owners, Operators, IT Directors and other senior stakeholders.
Requirements
- Have proven experience in a recent position as an IT Auditor (preferably any Big Four or other accounting firms) or equivalent experience in SOx IT program in a public company environment.
- Strong interpersonal skills, communication, and analytical skills.
- Any experience in GRC Tools or SOx compliance software preferred.
- Continuously focus on self-development by attending training, seminars and acquiring relevant certifications.
- Detail-oriented with a strong focus on accuracy.
- Proactive and results-driven.
- Strong organisational and time-management skills.
- Ability to influence and collaborate with cross-functional teams.
- High level of integrity and confidentiality.
- Ability to clearly articulate findings and communicate results to the management.
- Communicates fluently, orally and in writing, and can present complex information to both technical and non-technical audiences.
- Understands and uses appropriate methods, tools and applications.
- Demonstrates a rational and organised approach to work.
- Professional certification such as CISA, CRISC, CPA or willingness to pursue professional qualification.
- 4 to 7 Years of hands-on experience with various aspects of IT SOx including application scoping, flowcharts, risk-control matrix, testing, evaluation of deficiencies and remediation testing.
Benefits
- Competitive salary
- Hybrid working
- Rentokil Initial Reward Scheme
- 23 days holiday, plus 8 bank holidays
- Employee Assistance Programme
- Death in service benefit
- Healthcare
- Free parking
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Location requirements
Data Governance role ensuring compliance, quality and management of data in the insurance sector. Leading data governance projects and collaborating across teams.
Senior VP responsible for model validation and risk assessment in financial services. Collaborating with teams to manage model risk and regulatory compliance in Pune.
Manager overseeing IT Risk Management and compliance processes across IT verticals. Collaborating with global stakeholders to address and remediate risk and compliance issues.
Risk Officer analyzing merchant activities and product offerings for Bosta's logistics company. Working with data - driven insights to support decision - making on product categories and risk assessments.
Director of Asset Management Risk managing controls for new products and regulatory requirements. Collaborating with business partners to assess risks and lead executive presentations.
Fraud Risk Oversight Director overseeing risk management programs at Truist. Leading teams to ensure efficient risk practices and compliance within the financial services sector.
Overseeing Third Party Risk Management related activities at Truist. Managing application and reporting strategy along with technology enablement support.
Manager overseeing Operational Risk Management for Manulife. Responsible for effective risk governance, data analysis, and cross - functional collaboration.
AVP, IS Risk Management leading information security risk management activities. Overseeing risk assessments, third - party management, and compliance at Synchrony.