Overview
Skills
Job Details
ITCompliance Oversight
Location: Maplewood, MN - 100% Remote
Contract
Direct Client: 3M: 112796-1
Skills:
- IT General Controls (ITGC) compliance
- SOX compliance
- Risk Assessment
- Archer GRC
- IT auditing
- CISA, CISSP, CRISC
- Liaison between IT, finance
Key Responsibilities:
- ITCompliance Oversight:
o Lead the development and management of the ITcompliance program as part of the broader SOX compliance efforts.
o Ensure alignment of IT controls with SOX requirements and industry best practices.
o Oversee the documentation and evaluation of IT general controls related to financial systems and processes.
- Risk Assessment and Control Evaluation:
o Conduct IT risk assessments to identify potential vulnerabilities and ensure comprehensive risk coverage.
o Evaluate the design and operating effectiveness of key ITGCs, including access management, change management, and IT operations.
o Work with IT and business stakeholders to ensure effective remediation of identified control deficiencies.
- Policy and Procedure Development:
o Develop and maintain ITpolicies, procedures, and control matrices to support SOX compliance.
o Provide guidance and training to IT and business units on SOX ITrequirements and best practices.
- Collaboration and Coordination:
o Collaborate with the IT department to support the implementation of effective ITGCs across financial systems.
o Coordinate with internal audit and external auditors to facilitate ITtesting and audit processes.
o Serve as a liaison between IT, finance, and external auditors to ensure clear communication and effective audit coordination.
- Monitoring and Reporting:
o Monitor and report on the status of ITcompliance efforts and identified control deficiencies.
o Prepare regular reports for senior management and the audit committee on the effectiveness of the IT control environment.
o Track remediation efforts for control deficiencies and ensure timely resolution.
- Continuous Improvement:
o Identify opportunities for enhancing the ITcompliance program and overall IT control environment.
o Stay current with changes in technology, regulatory requirements, and industry trends to ensure ongoing compliance and control improvement.
Qualifications:
- Education:
o bachelor s degree in information technology, Computer Science, Accounting, or a related field.
o Advanced degree or professional certifications (e.g., CISA, CISSP, CRISC) preferred.
- Experience:
o Minimum of 5-7 years of experience in IT audit, IT compliance, or a related field with a focus on SOX compliance.
o In-depth knowledge and experience in SOX programs and application of ITGC.
o Experience using the Archer GRC tool preferred.
- Skills:
o Strong understanding of ITframeworks and best practices (e.g., COBIT, ITIL).
o Excellent analytical, problem-solving, and project management skills.
o Strong communication and interpersonal skills, with the ability to work effectively with technical and non-technical stakeholders.
o Proficiency in IT auditing tools and technologies used for control monitoring and assessment.
o Ability to navigate ambiguity and develop trusted business relationships.
o Ability to identify problems, analyze data and present conclusions.
o Ability to lead down, across, and up in order to influence desired outcomes.