Job Description
This role is remote, with required visit to your designated home office as requested.
Remote option is available for employees located in the following states; AZ, CO, CT, FL, GA, IA, IL, IN, LA, MA, MD, MI, MN, MS, MT, NC, NJ, NV, NY, OH, OR, PA, SC, TX, TN, WA, WV, and Washington D.C. (States subject to change at any time)
Home Office: Las Vegas, NV
The Senior IT Controls and Compliance Analyst provides technical controls support to ensure compliance with the multiple frameworks, including but not limited to: Sarbanes-Oxley (SOX), Minimum Internal Control Standards (MICS) of the various jurisdictions, Payment Card Industry Data Security Standard (PCI DSS), California Consumer Privacy Act (CCPA), General Data Protection Regulation (GDPR).
In supporting the controls environment, the Senior Analyst will work with control owners to ensure reviews are regularly performed and results documented. Ensure internal Policies and Standards are aligned with IT general controls. Provide controls support for multiple internal and external audits. Work with auditors and IT Teams on past due audit requests and follow ups.
The Senior Analyst will assist IT teams in written responses to any deficiencies, ensure remediation is complete and track action plan to completion. In addition, assist various IT and business teams in research and development, product evaluations, consulting, training, project support, and any other operational tasks needed to support the overall requirements of the program and strategy.
KEY JOB FUNCTIONS:

• Support the IT SOX efforts in preparing information essential to the understanding and assessment of internal controls, including risk and control matrices and narrative descriptions
• Coordinate with internal and external auditors in supporting IT SOX testing, walkthroughs, and process reviews
• Facilitate internal controls audit work performed by internal and external auditors
• Work with IT to evaluate design and effectiveness of new controls when necessary
• Assess new systems, databases, or changes to existing procedures to identify risks before go live, providing recommendations for improvements
• Evaluate IT control deficiencies for impact and perform root cause analysis to determine appropriate management actions. Monitor and support management's remediation efforts to ensure closure, including review of supporting evidence
• Engage in audit readiness activities for various frameworks across the company (IT SOX, PCI, HIPAA, SOC2, Nevada MICS, GLI-33B)
• Support compliance projects related to PCI-DSS as assigned
• Conduct gap analysis and assessment of privacy and risk management programs
• Support IT by performing research and development, product evaluations, consulting, project support, and any other operational tasks needed to support the overall requirements of the program and strategy
• Provide Subject Matter Expertise on controls and best practices

General Responsibilities

• Develop and maintain project plans, risk assessments and performance metrics to support implementation activities, completion of tasks, and scope control for assigned projects
• Apply best practices and seek new ways to add value. Increase detail knowledge and practice of standard internal processes and procedures. Able to communicate and educate others on the same
• Liaise with Corporate departments, IT, internal/external auditors, and properties to coordinate their involvement in each project as needed during the prep activities
• Communicate business objectives and align with organizational goals
• Recognize and identify potential areas where existing policies and procedures require change, or where new ones need to be developed, especially regarding future business expansion
• Responsible for developing and implementing strategic plans
• Manage conflicting priorities by understanding the business strategy and developing alternatives
• Prepare status reports and other management metrics as needed
• Self-manage career in controls by leveraging available courses in-house and courses offered externally; prepare a career plan for short-term and longer-term performance management
• Perform other duties as required

EDUCATION and/or EXPERIENCE:

• Bachelor's degree or equivalent experience in Computer Science, Business Management, or MIS required
• Certified training in security management, risk and compliance solutions and practices. CISSP, CISA, CISM, GSEC, CRISC, or related certification(s) preferred

Requirements:

• 3+ years' experience in IT controls, IT risk, IT compliance and/or IT audit
• Experiential understanding of IT SOX, PCI-DSS, Privacy, SOC 2, NIST, MICS
• Vast knowledge of IT SOX processes - change management, logical access, and provisioning (including user access review), job scheduling, backups, etc.
• Advanced knowledge of IT general computing controls and application controls, including writing and assessing test of design and operating effectiveness
• Gaming and Hospitality support or similar 24/7 environment preferred
• Excellent analytical skills with the ability to identify requirements and effectively coordinate solutions and problem-solving skills

About Us
At Caesars Entertainment, Inc., our Team Members create the extraordinary. We are the largest casino-entertainment company in the U.S. and one of the world's most diversified casino-entertainment providers. Since beginning in Reno, Nevada, in 1937, Caesars Entertainment has grown through the development of new resorts, expansions and acquisitions. Our resorts operate primarily under the Caesars®, Harrah's®, Horseshoe® and Eldorado® brand names. We focus on building loyalty and value with our guests through a combination of impeccable service, operational excellence and technological leadership. The company is committed to its Team Members, suppliers, communities and the environment through its PEOPLE PLANET PLAY framework.
Our Caesars family is driven by our Mission, Vision and Values. We take great pride in living these values - Together We Win, All In On Service and Blaze the Trail - every day. Our mission, "Create the Extraordinary". Our vision, "Create spectacular worlds. That immerse, inspire and connect you. We don't perform magic; we create it with excellence. #WeAreCaesars". If you are ready to create some magic, we invite you to explore our dynamic, yet unique, career opportunities.