The Role
This role focuses on strengthening the SOX control frameworks through testing control design and operating effectiveness, updating documentation, and collaborating with teams for compliance with IT risk and internal controls.
Summary Generated by Built In
The Group Financial Governance Senior IT Risk Associate will be responsible for working with key business groups, control owners, third party consultants, and the clients internal and external auditors to further strengthen their OX framework. They are looking for a collaborative, hands-on individual experienced in driving efficient and effective SOX control frameworks in complex organizations.
Reporting to the Director of Financial Governance, the incumbent of this role will be experienced in IT risk and internal control.
RESPONSIBILITIES:
Control Design Effectiveness Testing
• Conduct project fieldwork at in-scope plant locations, SSC locations, corporate processes in relevant geographies
• Perform control walkthroughs and evaluate control design effectiveness for in-scope
• processes
• Update IT risk and control matrices and process documentation, as needed
• Document IT control design deficiencies and gaps
• Document control design testing results in the Governance Risk and Compliance (GRC) tool
• Develop and agree on control design remediation plans
Control Operating Effectiveness Testing
• Perform SOX control operating effectiveness testing for Round 1 and Round 2 periods for in scope areas such as IT General Controls (ITGCs) and IT Automated Controls (ITACs)
• Perform agreed upon procedures on Information Produced by the Entity (IPE), as applicable, for controls being tested
• Complete operating effectiveness testing and document testing results for each control, including a summary testing matrix and supporting evidence
• Perform quality review of operating effectiveness and IPE testing documentation and incorporate feedback into final deliverables
• Document control operating effectiveness deficiencies within the testing matrix and deliver to Group Financial Governance (GFG) Team for further action
GRC Tool Support
• Make updates to GRC platform and/or content
Reporting
• Conduct post-audit meetings with the control owners to review results and discuss findings
• Partner with business and Group IT on actions to remediate findings
• Draft report to summarize issues for each audit
REQUIREMENTS:
• Bachelor’s degree in IT, Finance or Business, CISA and/or Certified Internal Auditor preferred
• 2+ years’ experience in an internal controls / internal or external audit / IT risk management environment preferably gained in a large global Corporate and/or a Big 4 Accounting firm
• Strong and practical working knowledge of current SOX requirements preferably in the Manufacturing sector
• Demonstrated IT risk and controls knowledge
• End-to-end process minded, experience with data analytics a plus
• Strong working knowledge of Excel and Data Analytics a plus
• SAP knowledge a plus
• Experience with setting up and utilizing various GRC Tools
• Experienced in working in a diverse and multi-cultural / multi-national environment
• Up to 20% travel
Reporting to the Director of Financial Governance, the incumbent of this role will be experienced in IT risk and internal control.
RESPONSIBILITIES:
Control Design Effectiveness Testing
• Conduct project fieldwork at in-scope plant locations, SSC locations, corporate processes in relevant geographies
• Perform control walkthroughs and evaluate control design effectiveness for in-scope
• processes
• Update IT risk and control matrices and process documentation, as needed
• Document IT control design deficiencies and gaps
• Document control design testing results in the Governance Risk and Compliance (GRC) tool
• Develop and agree on control design remediation plans
Control Operating Effectiveness Testing
• Perform SOX control operating effectiveness testing for Round 1 and Round 2 periods for in scope areas such as IT General Controls (ITGCs) and IT Automated Controls (ITACs)
• Perform agreed upon procedures on Information Produced by the Entity (IPE), as applicable, for controls being tested
• Complete operating effectiveness testing and document testing results for each control, including a summary testing matrix and supporting evidence
• Perform quality review of operating effectiveness and IPE testing documentation and incorporate feedback into final deliverables
• Document control operating effectiveness deficiencies within the testing matrix and deliver to Group Financial Governance (GFG) Team for further action
GRC Tool Support
• Make updates to GRC platform and/or content
Reporting
• Conduct post-audit meetings with the control owners to review results and discuss findings
• Partner with business and Group IT on actions to remediate findings
• Draft report to summarize issues for each audit
REQUIREMENTS:
• Bachelor’s degree in IT, Finance or Business, CISA and/or Certified Internal Auditor preferred
• 2+ years’ experience in an internal controls / internal or external audit / IT risk management environment preferably gained in a large global Corporate and/or a Big 4 Accounting firm
• Strong and practical working knowledge of current SOX requirements preferably in the Manufacturing sector
• Demonstrated IT risk and controls knowledge
• End-to-end process minded, experience with data analytics a plus
• Strong working knowledge of Excel and Data Analytics a plus
• SAP knowledge a plus
• Experience with setting up and utilizing various GRC Tools
• Experienced in working in a diverse and multi-cultural / multi-national environment
• Up to 20% travel
Skills Required
- Bachelor's degree in IT, Finance or Business
- CISA and/or Certified Internal Auditor preferred
- 2+ years' experience in internal controls, internal or external audit, IT risk management
- Strong knowledge of current SOX requirements
- Demonstrated IT risk and controls knowledge
- Experience with data analytics
- Strong knowledge of Excel
- SAP knowledge
- Experience with GRC tools
- Experience in a diverse and multi-cultural environment
Am I A Good Fit?
Get Personalized Job Insights.
Our AI-powered fit analysis compares your resume with a job listing so you know if your skills & experience align.
Success! Refresh the page to see how your skills align with this role.
The Company
What We Do
Pacifica Continental is a global recruitment firm specialized in strategic positions such as board members, c-suites, senior and middle management, and skilled professionals across various industries, helping clients attract, develop, and retain talent to accelerate business growth.
