Senior IT Compliance Analyst

We are looking for an experienced Senior IT Compliance Analyst to support and maintain DECIEM’s IT governance, risk management, processes & controls and overall compliance.

This hybrid role will be based out of our Fraser Head Office in Toronto.

WHAT YOU’D BE DOING IN THIS ROLE

• Participating in the continued transformation of the SOX IT and controls maturation program and play a critical role
• Leading, executing, and / or supporting critical processes and controls for key SOX application systems, including but not limited to, access provisioning and de-provisioning, periodic user access reviews, and change controls.
• Maintaining a high level of visibility across the Brand with various levels of Management and serve as a key point of contact for lines of business.

Manage communications with key partners, including messaging of SOX IT objectives and requirements, managing request lists, and facilitating discussions on risk & controls.

Facilitating the walkthrough process with Management and various audit team. Collaborate with IT partners to review SOX documentation (risk control matrices, narratives, flowcharts) and identify areas where control enhancements and / or documentation improvements are needed.

Ensure SOX documentation is accurate and reflects current process.

Completing and / or reviewing SOX assurance testing for key general IT controls (GITCs / ITGCs), IT application controls (ITACs), and key reports (IPE) identified in the walkthrough process.

Coordinate testing approach and align expectations with internal & external auditors to ensure documentation and testing complies with industry standards (including PCAOB) and allows for reliance by the external auditors.

Leverage knowledge of SOX methodology and industry requirements to ensure thorough workpapers are maintained.

• Support the Brand and various teams during project and system implementations to ensure governance is in place with adequate controls during Lifecyle(s) and establish run-state controls to address risk post go-live
• Assessing IT control deficiencies identified and work with Management for impact analysis and to identify an appropriate remediation action.

Follow-up on remediation activities to verify appropriate resolution.

• Gathering details for in-scope SOX entities and assist in performing an annual SOX IT Risk, Scoping and Controls Assessment
• Providing advisory and when required, assess SOC 1 / SOC 2 reports to ensure appropriate controls are identified and operating effectively.

SKILLS AND QUALIFICATIONS NEEDED TO GET THE JOB DONE

• You have 3-4 years of experience in IT Audit, SOX Compliance, or Information Systems Risk Management & Governance
• You have a working knowledge of internal controls over financial reporting (ICOFR), SEC standards, PCAOB standards, the NIST framework, COSO framework, and / or COBIT
• You are experienced in designing test plans, testing and concluding on the operating effectiveness of IT general controls, IT automated controls, key reports, and software development life cycle controls
• You are experienced in documenting and evaluating deficiencies and assisting management with designing remediation plans
• You have experience with technologies such as MS Dynamics 365, SAP, Oracle, Unix / Linux, SAP GRC, Identify & Access Management Systems and other cloud technologies, especially AWS, Salesforce and Azure

WHAT YOU’LL BE GAINING BY JOINING OUR TEAM

There’s a lot of good stuff that comes along with being a DECIEM team member. Here are a few of our favorite perks and benefits, in no particular order

• Generous Vacation & Personal Days, plus additional time off for volunteering in your community, voting, peaceful protesting, celebrating your birthday, and more.
• 6 months of paid time off for new parents (inclusive of all genders).
• Monthly catered lunches and chances to connect with your teammates.
• Unlimited access to an Employee Assistance Program that includes mental health care, mindfulness programs, and more.
• Access to Development Grants & a LinkedIn Learning membership to help you keep growing and learning.
• First dibs on new products.
• A generous discount on DECIEM products for you, your family, and your friends.
Il y a plus de 30 jours