Sr. Analyst, Process, Controls & Compliance - IT (Internal Controls, SOX, Audit)

Covetrus is a global animal-health technology and services company dedicated to empowering veterinary practice partners to drive improved health and financial outcomes. We’re bringing together products, services, and technology into a single platform that connects our customers to the solutions and insights they need to work best. Our passion for the well-being of animals and those who care for them drives us to advance the world of veterinary medicine. Covetrus has over 100,000 customers around the globe.

Summary

We are hiring an Sr. Analyst, Process, Controls and Compliance - IT (Internal Controls, SOX, Audit) reporting to the Manager, IT Process, Controls & Compliance (PCC).  The PCC team’s strategy is to provide proactive advisement and recommendation to teams across the organization on the design of processes and controls and audit compliance.  The PCC team serves as trusted partners and advisors in supporting new business initiatives, focusing on establishing efficient and sustainable processes that favor automated controls over reliance on human behavior.

The Sr. Analyst, Process, Controls and Compliance - IT serves as a subject matter expert in identifying IT and cybersecurity risks and recommendations and should possess expert IT knowledge across risk, audit, controls and compliance as well as a strong understanding in business processes.  The IT Sr. Analyst will participate in advisory and consulting projects related to technology or automation and cross functional business initiatives, process improvements, information technology related operational audits, compliance reviews, controls testing, issue remediation, risk assessments, and collaboration with external auditors.   

This role is an individual contributor.

Duties/Responsibilities

• Participate in cross functional business initiatives and special projects and provide guidance on efficient IT processes and controls, best practices, and risk management.
• Perform risk-based IT and systems operational audits to ensure compliance with regulations and security protocols. Identify and communicate opportunities to improve processes and internal controls.
• Perform reviews of assessments of IT General Controls (ITGC), automated controls, and segregation of duties and provide value added feedback.
• Provide Business and/or IT management with guidance on IT risk management matters to influence change.
• Communicate audit results, clearly and concisely.
• Partner with management to develop efficient and effective corrective action plans and influence improvements to the company’s systems of internal control. 
• Follow up on the status of corrective action plans and test management’s remediation efforts.
• Work with external auditors to facilitate IT audit processes, respond to audit queries, address audit findings, provide necessary information on controls, or explaining procedures.
• Develop and maintain strong relationships with key stakeholders to ensure collaboration in audits or projects.
• Participate in the risk assessment process.
• Maintain IT controls framework and related narratives or flowcharts.

Skills/Qualifications

• Bachelor’s degree in Computer Science, Information Systems, Accounting, Finance, Information Technology, Information Systems Management, or other business related field.
• Certified in CISA, CISM, CISSP, CPA, or CIA preferred.  Big 4 Public Accounting experience would be a plus.
• 5+ years of professional experience with a combination of at least 2 years of experience in an IT related position.
• 2+ years of audit experience (in a public company, an international organization, or Public Accounting firm).
• Knowledge of basic audit standards and processes, Sarbanes Oxley, COSO, systems design, system operations, end user computing technologies, and audit software.
• Knowledge of current technological developments/trends in area of Infrastructure, IT security, Operating Systems
• Ability to quickly develop a deep understanding of end-to-end business processes, systems, and data flows across an organization. Evaluate the effectiveness and efficiency of the company’s IT risks, controls, and governance processes.
• Ability to evaluate and conduct reviews on a range of Hardware, Operating Systems, Databases, Network Infrastructure and applications.
• Ability to perform control reviews on systems development, operations, programming, control, and security procedures and standards in line with professional standards.
• Knowledge of internal controls, systems, cybersecurity, and risk management processes.
• System implementation experience and/or business transformation would be a plus.
• Knowledge of IT and Cybersecurity control frameworks including CIS 18, NIST, COBIT, ISO 2700 a plus.
• Experience in the process mapping and documentation.

About you

• Self-starter with a strong work ethic, high degree of motivation and the ability to contribute to a positive team attitude, proven dedication to teamwork, high attention to detail, collaborative, and exhibits integrity within a professional environment.
• Ability to effectively work on multiple projects concurrently while meeting deadlines in a fast-paced environment with changing processes and procedures.
• Flexibility in adjusting to changing circumstances, processes, and priorities.
• Strong analytical and problem-solving skills.
• Strong time management and organizational skills.
• Advanced verbal and written communication and strong interpersonal skills.
• Ability to present complex analysis with clarity and professionalism; must be comfortable interacting with individuals at all levels of the organization and portray a strong professional image.
• Ability to identify and assess changing business process risks.

Salary may vary depending on factors such as confirmed job-related skills, experience, and location. It is not typical for an individual to be hired at or near the top end of the range for their role. Compensation decisions are dependent upon the facts and circumstances of each case.

However, the pay range for this position is as follows. Sales Positions are eligible for a Variable Incentive

We offer the following benefits for you to take advantage of while you are here provided you meet the eligibility requirements under each governing program:

•            401k savings & company match

•            Paid time off

•            Paid holidays

•            Maternity leave

•            Parental leave

•            Military leave

•            Other leaves of absence

•            Health, dental, and vision benefits

•            Health savings accounts

•            Flexible spending accounts

•            Life & disability benefits​

•            Identity theft protection

•            Pet insurance

•            Certain positions may include eligibility for a short term incentive plan

Covetrus is an equal opportunity/affirmative action employer. All qualified applicants will receive consideration for employment without regard to sex, gender identity, sexual orientation, race, color, religion, national origin, disability, protected Veteran status, age, or any other characteristic protected by law.