Description:
Brightspeed is looking for an Internal Audit and SOX Control IT Analyst to join our team! The Internal Audit & SOX Control IT Analyst is a detail-oriented individual who will be responsible for conducting internal audits to assess the effectiveness of IT internal controls, identify areas of improvement, and ensure compliance with policies and regulations. The IT Audit Analyst will possess strong analytical skills, a solid understanding of auditing principles, and communicate audit findings clearly and effectively.
In addition, the Internal Audit & SOX Control Analyst – IT will play a crucial role in ensuring the organization’s compliance with the Sarbanes-Oxley Act by assessing, monitoring, and enhancing IT internal controls and processes. The IT Audit Analyst will participate in IT walkthroughs to understand and identify key IT controls, keep abreast on control-impacting system and technology changes, effectively and efficiently test key IT controls, and monitor action plan remediation activities.
As An Internal Audit and SOX Control IT Analyst, Your Responsibilities Will Include:
- Participate in the planning, fieldwork, and reporting phases of internal audits across various departments to evaluate the adequacy of IT internal controls.
- Develop and execute SOX test plans to assess the effectiveness of IT general controls over financial reporting, including thoroughly and clearly documenting the testing workpapers.
- Effectively identify root causes, best practices in control design and operational effectiveness, and communicate results with system owners and management.
- Recommend process effectiveness improvements by identifying gaps and weaknesses, including evaluating for likelihood and impact.
- Partner with management to monitor the process of audit recommendations to ensure action plans are implemented timely and accurately.
- Assist in the development and enhancement of audit procedures and processes.
- Lead or support data analytics projects, integrating analytics into audit processes and identifying automation opportunities in partnership with IT.
- Collaborate with and educate system/technology and process owners regarding the importance of maintaining strong IT internal controls and the role of internal audit.
- Develop strong working relationships with system/technology owners to maximize the cohesiveness between the teams.
- Perform other duties as required.
- Maximum travel is approximately 15%.
Qualifications
What It Takes To Catch Our Eye:
- Bachelor's degree in Information Technology, Management Information Systems, Accounting or related field.
- Relevant work experience (2+ years) including IT control identification and testing.
- Understanding and/or experience with various technologies, including cloud computing, infrastructure, platforms, applications, and databases.
- Fundamental understanding of business processes, financial reporting, and information technology audit and control frameworks such as SOX, COSO, COBIT, NIST, and OWASP.
- Knowledge of business continuity management and disaster recovery.
- Knowledge of ERP security (SAP preferred) and application control identification and testing.
- Knowledge of security architecture.
- Proficient in Microsoft Office applications.
- Strong verbal and written communications skills.
- Excellent analytical and problem-solving skills.
- The above statements are intended as general examples of the duties of this position and are not all-inclusive for the position. Other reasonable duties may be assigned.