Project Overview: SOC and SOX IT governance and testing
Qualifications:
IT control understanding and knowledge from a control developments and proficiency in IT control frameworks, risk assessment and testing perspective, motivated and driven. Excellent written and verbal communication skills, Attention to Detail
Nice to Haves: CISA, CRISC, CISSP, or similar.
Tasks & responsibilities:
1. IT Control Analysis
- Assess the current IT control environment.
- Identify gaps and weaknesses in IT controls.
- Develop and recommend improvements to enhance control effectiveness
2. Compliance and Risk Management:**
- Ensure IT controls comply with relevant regulations and standards (e.g., SOX, GDPR, ISO 27001).
- Conduct regular risk assessments and audits.
3. Process Improvement
- Analyze business processes to identify opportunities for automation controls.
- Collaborate with IT and business teams to design and implement IT control improvements.
- Document new processes and ensure alignment.
4. Reporting and Documentation:**
- Prepare detailed reports on control assessments, testing results, and improvement of the testing approach.
- Maintain documentation of IT controls, processes, and compliance requirements.
- Present findings, impact analysis and recommendations to manager.
5. Monitoring and Maintenance:**
- Continuously monitor the effectiveness of SOX/SOC controls and tracking exceptions
- Update control documentation as necessary to reflect changes in the IT environment or regulatory requirements.
- Support internal and external audits by providing necessary documentation, escalations, and explanations.
Job Type: Contract
Pay: $45.00 - $48.00 per hour
Experience level:
Experience:
- Business analysis: 8 years (Required)
Location:
Work Location: On the road