Senior GRC Analyst

About The Position

Requirements

• Minimum of five years professional audit and/or IS compliance experience preferably with a public accounting firm and/or in the area of information technology audit/consulting.
• Certified as a CISA, CISM, CISSP, CPA, CIA or CGEIT or working toward certification.
• Bachelor's degree from an accredited college or university in the field of business, accounting, finance, computer science, information systems and/or another appropriate academic major.
• Considerable knowledge of and skill in applying Information Systems security control processes and related business practices.
• Knowledge of management information systems terminology, concepts, and practices.
• Knowledge or experience with one or more of the following: ServiceNow, Unix/Linux, Microsoft Office Suites, SQL, etc.
• Knowledge of US GAAP, auditing and accounting principles, standards and practices
• Skill in analyzing complex data, evaluating security information and drawing logical conclusions.
• Experience with project management and successfully meeting multiple project deadlines.
• Considerable skill in using a computer with word processing, spreadsheet and other business software to prepare reports, memos, summaries and analyses.
• Considerable skill in effective verbal and written communications.
• Strong organization and analytical skills.
• Knowledge of generally accepted IS standards, statements and practices, and IS security and control practices.

Responsibilities

• Liaising with process owners, internal auditors, external auditors and other stakeholders.
• Assisting in evaluating, monitoring and resolving findings (internal and external audit etc), support the team with the overall management of SOX program.
• Organizing and involve walkthroughs, remediation, documentation, and reporting for IT controls, including IT General Controls, Automated Controls, Interfaces, Reports and End-User Computing Controls, etc.
• Performing complex level professional IT audit and/or compliance work. Work involves leading or conducting IT audit and compliance projects and providing consulting services to the organization's management and staff.
• Identifying technology risks and controls and independently evaluating the efficiency and effectiveness of the control environment.
• Evaluating risks and controls for new system implementations such as billing, contract management tools etc., assess the financial impact on SOX controls and recommend solutions to correct issues identified.
• Participating in process reviews and identify opportunities for significant enhancements in operational efficiency, overall effectiveness and identifiable benefits to the company.
• Striving for an optimum balance between implementing and executing controls versus the cost of implementing controls.

Benefits

• Medical, Dental & Vision benefits available the 1st month after hire
• Automatic enrollment into our 401k plan (subject to eligibility requirements)
• Virtual fitness classes offered company-wide
• Robust PTO offerings including: major holidays, vacation, sick, personal, & volunteer time
• Employee discounts with major providers (i.e. wireless, gym, car rental, etc.)
• Philanthropic support with both local and national organizations