*SOX IT Analyst* *Location: Orlando, FL*
*Duration: 6 Months* *Required Skills:* • 5+ years of combined experience in information auditing, security and compliance • Certifications in one or more of the following: CISA, CISSP, CISM, CRISC, ITIL • Bachelor’s degree in Computer Science, Information Systems, IT Engineering or related field • Broad technical understanding of business application systems, IT infrastructure and database management systems • Understanding of SSAE 16 SOC 1/SOC 2 reports • Strong analytical skills to identify and understand issues, problems, and opportunities; compare data from different sources to draw conclusions • Highly ethical and discreet with ability to maintain confidentiality • Excellent interpersonal skills, including the ability to empathize with control owners while ensuring adherence to the company’s security/compliance standards and policies • Strong oral and written presentation skills to effectively communicate technology issues *Essential Job Functions:* • Analyzes controls for adequacy of design over logical security, change management, computer operations and physical security. • Validates operating effectiveness testing (OET) results performed by internal and external auditors to reach conclusions derived for findings and observations, including performing a progressive review of test procedures and remedial actions for conclude. • Vets findings and observations with control owners and SMEs, providing initial conclusion on GITC effectiveness. • Participates in weekly GITC Audit status meetings to discuss progress, test results, issues and verification procedures; oversees remediation of corrective actions to resolve control gaps and deficiencies. • Supports and updates a centralized repository of security controls and audit issues aligned with corporate and regulatory requirements. • Advises process owners on design and implementation of IT controls (manual and automated) into processes and systems, using knowledge of risks and company objectives. • Suggests improvements regarding new and current control processes. • Assists IT process owners in the creation and maintenance of IT policies and procedures to support information assurance and regulatory compliance activities. • Assists the SOX Compliance Analyst with audit facilitation, evidence gathering and validation, and reporting. • Assists the SOX Compliance Analyst in providing governance over organizational GITC certifications. • Performs spot checks of key IT control areas to help ensure system readiness, enhance controls knowledge and enforce overall accountability. -- You received this message because you are subscribed to the Google Groups "Open Source J2EE frameworks" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at http://groups.google.com/group/open-source-j2ee-frameworks. For more options, visit https://groups.google.com/d/optout.
