- Review implementation of control requirements and appropriate information technology (IT) policies and procedures that are consistent with the organization'smission and goals.
- Identify and report on the determination of gaps in design or controls exist and providing recommendations for remediation and implementation of mitigating controls.
- Identify control requirements specific to an information technology (IT) system in all phases of the system life cycle.
- Collaborate with first line in development of action plans to assess the adequacy of action taken by management to remediate open items.
- Drive compliance/audit activities as assigned in relation to Sarbanes Oxley (SOX), IT Control Framework, Service Operation Control audits, manage internal/external audit engagements and third-party business reviews.
- Support control assessments first time and ongoing (Process, Application, and Infrastructure).
- Participate in the policy standards implementation strategies to ensure procedures and guidelines comply with applicable control policy.
- Drive and support in the development and implementation of goals, policies, priorities procedures relating to internal controls.
- Drive audit findings and recommendations to ensure that appropriate mitigation actions are taken.
- Support necessary compliance activities (e.g., ensure that system security configuration guidelines are followed, compliance monitoring occurs).
- Assess, define, and execute on control optimization.
- Support the verification that all acquisitions, procurements, and outsourcing efforts address control requirements consistent with organization goals and objectives.
- Support the key stakeholders throughout IT control framework and control consultant.
- Engage and collaborate with second line to demonstrate the design and operating effectiveness of controls.
- Support Cloud AWS (Amazon Web Service), Microsoft Azure control implementation, monitoring, and reporting.
With key markets in the Netherlands, the UK, and the US, as well as growth markets in China, Brazil, and Iberia, our international partner supports one of the largest financial services groups, by offering IT, finance, risk, model validation, actuarial, audit, and asset management services with the purpose of helping their customers to live their best lives.
A diverse workforce and an inclusive culture are fostered by our partner. They value diversity as a whole, including but not limited to, racial, gender, and ability diversity as well as diversity in language, culture, beliefs, age, origin, background, perspectives, and experiences.
The Internal Controls and Compliance (ICC) team provides governance, risk management, internal controls, and compliance services to support and enable leadership in achieving strategic objectives. This position conducts independent comprehensive assessments of the management, operational, and technical controls and control enhancements employed within or inherited by an information technology (IT) system to determine the overall effectiveness of the controls. To ensure that control objectives are being met and we can provide a reasonable level of assurance to all key stakeholders.
This position is focused on global delivery providing centralized services and supporting global program build-out.
Qualifications and Skills:
- Bachelor’s degree or equivalent knowledge in risk management and controls.
- 5-7 plus years of experience working with internal controls, audit, or risk management within the financial services industry.
- Excellent communication skills in writing and communication information in a clear, concise manner.
- Proven analytical, critical thinking and problem-solving skills
Preferred Qualifications:
- CISA, CISSP, CISM, or CIA recommended.
- Ability to understand technology, management, and leadership issues related to organization processes and problem solving.
- Knowledge of Audit Assurance Framework requirements.
- Financial services experience.
- Experience with GRC solutions.
- Knowledge of public cloud providers (AWS, Azure, etc.).
- Big 4 public accounting experience working with controls within the Sarbanes Oxley environment.
- Knowledge of current industry methods for evaluating, implementing, and disseminating information technology (IT) assessment, monitoring, detection, and remediation tools and procedures utilizing standards-based concepts and capabilities.
- Skill in creating policies that reflect control requirements.
- Home office
- Competitive salary
- Flexible working hours
- Very good development opportunities in a global company
- Highly people-centric environment
- Diverse and interesting tasks and projects
- Health Insurance
- Training & Development opportunities