*Hybrid, 3 days onsite, 2 days remote* *We are unable to sponsor as this is a permanent Full time role* A prestigious company is looking for a Senior Associate, Internal Audit IT & Security. This internal auditor will need 2+ years of experience conducting risk-based information technology and security audits. This is a highly regulated financial environment, and these audits will follow AICPA, IIA, IPPF, COBIT, NIST, and CSF standards/frameworks. Responsibilities: Support the team on delivery of assigned audits within the annual audit plan. Support the team confirming a professional auditee experience. Owning the audit quality, accuracy of results, and delivery in a timely manner. Proactively identify regulatory, operational, and/or strategic risks to the organization and bring them to your engagement team. Evaluate exceptions or inefficient practices for root causes and propose advice and recommendations for achievable solutions. Leading audits related to organization changes including business requirements definitions, technology implementations (eg, change management, security), engagement and alignment of change initiatives to business objectives. Maintaining an understanding of policies, procedures, standards, and supporting technologies, and educating staff accordingly, to effectively identify potential risks and alternatives to mitigate risk exposure leveraging leading practices. Ability to understand professional principles and standards (eg, AICPA, IIA IPPF, COBIT, NIST CSF) and the relevancy to risk management and impact on policies and procedures. In addition, leveraging these principles and standards to test and evaluate corporate risk management processes and control. Keeping current on best practices and emerging risks within the financial services industry and making recommendations for improvements as necessary. Qualifications Bachelor's degree (or equivalent) in Information Technology, Computer Science, Computer Engineering, Accounting, Finance, Business Administration, or related field. 2+ years of experience (audit-related) in conducting risk-based Information Technology and Security audits and projects, cyber security reviews, and internal audits. Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), Certification in Risk Management Assurance (CRMA), Certified Internal Auditor (CIA), Certified Public Accountant (CPA), or equivalent. Consulting and/or accounting firm experience. Experience in Financial Services/Security Industry and working with regulations such as Regulation Systems Compliance and Integrity (Reg SCI). Experience using the principles, practices, and techniques involved in conducting audits in accordance with the requirements set forth in the International Standards for the Professional Practice of Internal Auditing published by the Institute of Internal Auditors (IIA). Microsoft Office applications Proficiency using Archer or other audit or Governance Risk and Compliance (GRC) software
04/07/2025
Full time
*Hybrid, 3 days onsite, 2 days remote* *We are unable to sponsor as this is a permanent Full time role* A prestigious company is looking for a Senior Associate, Internal Audit IT & Security. This internal auditor will need 2+ years of experience conducting risk-based information technology and security audits. This is a highly regulated financial environment, and these audits will follow AICPA, IIA, IPPF, COBIT, NIST, and CSF standards/frameworks. Responsibilities: Support the team on delivery of assigned audits within the annual audit plan. Support the team confirming a professional auditee experience. Owning the audit quality, accuracy of results, and delivery in a timely manner. Proactively identify regulatory, operational, and/or strategic risks to the organization and bring them to your engagement team. Evaluate exceptions or inefficient practices for root causes and propose advice and recommendations for achievable solutions. Leading audits related to organization changes including business requirements definitions, technology implementations (eg, change management, security), engagement and alignment of change initiatives to business objectives. Maintaining an understanding of policies, procedures, standards, and supporting technologies, and educating staff accordingly, to effectively identify potential risks and alternatives to mitigate risk exposure leveraging leading practices. Ability to understand professional principles and standards (eg, AICPA, IIA IPPF, COBIT, NIST CSF) and the relevancy to risk management and impact on policies and procedures. In addition, leveraging these principles and standards to test and evaluate corporate risk management processes and control. Keeping current on best practices and emerging risks within the financial services industry and making recommendations for improvements as necessary. Qualifications Bachelor's degree (or equivalent) in Information Technology, Computer Science, Computer Engineering, Accounting, Finance, Business Administration, or related field. 2+ years of experience (audit-related) in conducting risk-based Information Technology and Security audits and projects, cyber security reviews, and internal audits. Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), Certification in Risk Management Assurance (CRMA), Certified Internal Auditor (CIA), Certified Public Accountant (CPA), or equivalent. Consulting and/or accounting firm experience. Experience in Financial Services/Security Industry and working with regulations such as Regulation Systems Compliance and Integrity (Reg SCI). Experience using the principles, practices, and techniques involved in conducting audits in accordance with the requirements set forth in the International Standards for the Professional Practice of Internal Auditing published by the Institute of Internal Auditors (IIA). Microsoft Office applications Proficiency using Archer or other audit or Governance Risk and Compliance (GRC) software
IT Compliance Analyst Salary : £35,000 to £40,000 Location : Birmingham An exciting opportunity has arisen for an IT Compliance Analyst to join a forward-thinking organisation in Birmingham, where your expertise will play a pivotal role in shaping and safeguarding the company's information security landscape. This newly created position offers you the chance to be at the forefront of developing robust compliance measures, working closely with both internal and external audit teams, as well as a diverse range of stakeholders across the business. You will be instrumental in ensuring that all information security controls are not only effective but also fully compliant with industry standards. The role provides a unique platform to collaborate with procurement, business units, and third-party vendors, ensuring comprehensive risk management and continuous improvement of security practices. With a strong emphasis on teamwork, communication, and operational delivery, this is your opportunity to make a meaningful impact within a supportive environment that values knowledge sharing and professional growth. Be part of a newly established function dedicated to enhancing information security measures and evidencing compliance for both the business and its customers, offering you the chance to shape processes from the ground up. Work collaboratively with cross-functional teams including procurement, business units, and third-party vendors to identify, assess, and manage risks while supporting customer audits and responding to complex queries. Enjoy a consultative and inclusive workplace culture that encourages open communication, stakeholder engagement, and ongoing professional development within the field of information security. What you'll do: As an IT Compliance Analyst based in Birmingham, you will immerse yourself in a variety of engaging activities designed to strengthen the organisation's information security posture. Your day-to-day responsibilities will see you reviewing critical documentation related to IT controls while evaluating their effectiveness through rigorous testing. You will develop audit methodologies that set new benchmarks for quality assurance within the business. By designing audit programmes tailored to industry standards such as CIS or ISO27001, you will ensure ongoing compliance across all areas. Taking ownership of both internal and external audits means you'll be at the heart of maintaining regulatory alignment while also assessing third-party suppliers for potential risks. Your collaborative approach will see you working hand-in-hand with procurement teams as well as other business units to uphold cyber security standards throughout the supply chain. Additionally, you'll play a key role in responding to customer due diligence requests by gathering input from various departments. Through these varied tasks, your contribution will be vital in driving continuous improvement initiatives that protect both company assets and client interests. Review existing documentation of IT controls, business processes, policies, procedures, and management reports to ensure their effectiveness and sustainability across the organisation. Evaluate, document, and test both manual and automated controls throughout the IT environment to maintain high standards of operational efficiency. Develop and implement comprehensive audit testing methodologies tailored to evolving industry requirements. Design detailed audit programmes that facilitate ongoing evaluation and validation of IT control effectiveness in line with best practice frameworks. Lead and conduct internal and external Information Security audits according to recognised industry standards such as CIS, SOX, and ISO27001. Assess suppliers' capabilities against applicable requirements by conducting thorough evaluations aligned with organisational policies, standards, and procedures. Conduct Information Security risk assessments for suppliers and vendors to ensure all third-party risks are identified, assessed, and managed effectively. Collaborate with internal stakeholders to ensure that all controls adhere strictly to defined policies, processes, and procedures. Work closely with procurement teams and business units to guarantee supplier compliance with cyber security policies and standards. Lead the completion of customer RFPs and RFIs by coordinating responses across multiple functions including Sales, Product Development, Information Security, and Information Systems. What you bring: To excel as an IT Compliance Analyst in this setting, your background should reflect hands-on experience within audit functions where information security was paramount. Your familiarity with leading governance frameworks like NIST or ISO27001 will enable you to navigate complex regulatory landscapes confidently. You bring not only technical acumen but also outstanding interpersonal abilities-your talent for building relationships ensures smooth collaboration between internal teams and external partners alike. Your attention to detail shines through when documenting findings or preparing reports; meanwhile your organisational skills help you juggle multiple priorities without compromising quality. A consultative mindset allows you to support colleagues while maintaining independence in your assessments. Proven experience working within an audit function focused on information security or IT compliance is essential for success in this role. Comprehensive knowledge of major Information Security frameworks such as NIST, CIS, SOX, Cyber Essentials, ISO27001, PCI-DSS or SOC is required. Demonstrated ability to contribute positively towards fostering an effective Information Security culture that supports audit objectives across diverse teams. Strong relationship-building skills enabling you to establish productive connections with stakeholders from functional teams as well as external auditors on relevant standards. A solid understanding of Information Security controls coupled with practical experience applying them within complex environments is highly desirable. Ability to accurately identify Information Security risks during audits while managing findings in accordance with organisational risk appetite guidelines. Exceptional written and verbal communication skills allowing you to produce clear audit documentation and present findings confidently at all levels. Commitment to excellence reflected through high organisational skills; adept at managing time efficiently while balancing priorities under pressure. Capacity for autonomous work combined with a proactive approach towards driving improvements in processes or control environments. What's next: If you are ready to take on a rewarding challenge where your skills can truly make an impact within information security compliance-this is your moment! Apply today by clicking on the link provided-your next career step awaits! Robert Walters Operations Limited is an employment business and employment agency and welcomes applications from all candidates
04/07/2025
Full time
IT Compliance Analyst Salary : £35,000 to £40,000 Location : Birmingham An exciting opportunity has arisen for an IT Compliance Analyst to join a forward-thinking organisation in Birmingham, where your expertise will play a pivotal role in shaping and safeguarding the company's information security landscape. This newly created position offers you the chance to be at the forefront of developing robust compliance measures, working closely with both internal and external audit teams, as well as a diverse range of stakeholders across the business. You will be instrumental in ensuring that all information security controls are not only effective but also fully compliant with industry standards. The role provides a unique platform to collaborate with procurement, business units, and third-party vendors, ensuring comprehensive risk management and continuous improvement of security practices. With a strong emphasis on teamwork, communication, and operational delivery, this is your opportunity to make a meaningful impact within a supportive environment that values knowledge sharing and professional growth. Be part of a newly established function dedicated to enhancing information security measures and evidencing compliance for both the business and its customers, offering you the chance to shape processes from the ground up. Work collaboratively with cross-functional teams including procurement, business units, and third-party vendors to identify, assess, and manage risks while supporting customer audits and responding to complex queries. Enjoy a consultative and inclusive workplace culture that encourages open communication, stakeholder engagement, and ongoing professional development within the field of information security. What you'll do: As an IT Compliance Analyst based in Birmingham, you will immerse yourself in a variety of engaging activities designed to strengthen the organisation's information security posture. Your day-to-day responsibilities will see you reviewing critical documentation related to IT controls while evaluating their effectiveness through rigorous testing. You will develop audit methodologies that set new benchmarks for quality assurance within the business. By designing audit programmes tailored to industry standards such as CIS or ISO27001, you will ensure ongoing compliance across all areas. Taking ownership of both internal and external audits means you'll be at the heart of maintaining regulatory alignment while also assessing third-party suppliers for potential risks. Your collaborative approach will see you working hand-in-hand with procurement teams as well as other business units to uphold cyber security standards throughout the supply chain. Additionally, you'll play a key role in responding to customer due diligence requests by gathering input from various departments. Through these varied tasks, your contribution will be vital in driving continuous improvement initiatives that protect both company assets and client interests. Review existing documentation of IT controls, business processes, policies, procedures, and management reports to ensure their effectiveness and sustainability across the organisation. Evaluate, document, and test both manual and automated controls throughout the IT environment to maintain high standards of operational efficiency. Develop and implement comprehensive audit testing methodologies tailored to evolving industry requirements. Design detailed audit programmes that facilitate ongoing evaluation and validation of IT control effectiveness in line with best practice frameworks. Lead and conduct internal and external Information Security audits according to recognised industry standards such as CIS, SOX, and ISO27001. Assess suppliers' capabilities against applicable requirements by conducting thorough evaluations aligned with organisational policies, standards, and procedures. Conduct Information Security risk assessments for suppliers and vendors to ensure all third-party risks are identified, assessed, and managed effectively. Collaborate with internal stakeholders to ensure that all controls adhere strictly to defined policies, processes, and procedures. Work closely with procurement teams and business units to guarantee supplier compliance with cyber security policies and standards. Lead the completion of customer RFPs and RFIs by coordinating responses across multiple functions including Sales, Product Development, Information Security, and Information Systems. What you bring: To excel as an IT Compliance Analyst in this setting, your background should reflect hands-on experience within audit functions where information security was paramount. Your familiarity with leading governance frameworks like NIST or ISO27001 will enable you to navigate complex regulatory landscapes confidently. You bring not only technical acumen but also outstanding interpersonal abilities-your talent for building relationships ensures smooth collaboration between internal teams and external partners alike. Your attention to detail shines through when documenting findings or preparing reports; meanwhile your organisational skills help you juggle multiple priorities without compromising quality. A consultative mindset allows you to support colleagues while maintaining independence in your assessments. Proven experience working within an audit function focused on information security or IT compliance is essential for success in this role. Comprehensive knowledge of major Information Security frameworks such as NIST, CIS, SOX, Cyber Essentials, ISO27001, PCI-DSS or SOC is required. Demonstrated ability to contribute positively towards fostering an effective Information Security culture that supports audit objectives across diverse teams. Strong relationship-building skills enabling you to establish productive connections with stakeholders from functional teams as well as external auditors on relevant standards. A solid understanding of Information Security controls coupled with practical experience applying them within complex environments is highly desirable. Ability to accurately identify Information Security risks during audits while managing findings in accordance with organisational risk appetite guidelines. Exceptional written and verbal communication skills allowing you to produce clear audit documentation and present findings confidently at all levels. Commitment to excellence reflected through high organisational skills; adept at managing time efficiently while balancing priorities under pressure. Capacity for autonomous work combined with a proactive approach towards driving improvements in processes or control environments. What's next: If you are ready to take on a rewarding challenge where your skills can truly make an impact within information security compliance-this is your moment! Apply today by clicking on the link provided-your next career step awaits! Robert Walters Operations Limited is an employment business and employment agency and welcomes applications from all candidates
Job Title: Senior Reporting and Consolidation Manager Contract Duration: 3 months (trial and hire) Workload: 100% Start Date: ASAP Location: Zurich Extension Possible: Yes (internalization after trial period) Responsibilities Lead Consolidation in SAP S/4HANA and manage Quarterly IFRS Reporting Review monthly reporting packages in collaboration with the Accounting Shared-Service Center Prepare statutory financial statements according to the Swiss Code of Obligations (SCO) and perform reconciliation from IFRS to local GAAP Manage and support implementation of new accounting standards and reporting initiatives Drive process improvements and changes across accounting and reporting functions Serve as the Finance Single Point of Contact (SPOC) for various projects and implementations, including software replacements, setup of new legal entities, product launches, and change requests Coordinate and manage relationships with internal and external auditors Skills & Qualifications Completed university or technical college degree with a focus on accounting, finance, economics, or similar Swiss CPA qualification required Minimum 5 years of experience in financial group accounting for national/international groups, auditing, or related roles Strong expertise in IFRS and/or US GAAP reporting standards Proficient with SAP, SAP S/4HANA, and SAP Group Reporting Proactive, solution-oriented, with a structured and accurate work style Fluent in written and spoken English and German
03/07/2025
Project-based
Job Title: Senior Reporting and Consolidation Manager Contract Duration: 3 months (trial and hire) Workload: 100% Start Date: ASAP Location: Zurich Extension Possible: Yes (internalization after trial period) Responsibilities Lead Consolidation in SAP S/4HANA and manage Quarterly IFRS Reporting Review monthly reporting packages in collaboration with the Accounting Shared-Service Center Prepare statutory financial statements according to the Swiss Code of Obligations (SCO) and perform reconciliation from IFRS to local GAAP Manage and support implementation of new accounting standards and reporting initiatives Drive process improvements and changes across accounting and reporting functions Serve as the Finance Single Point of Contact (SPOC) for various projects and implementations, including software replacements, setup of new legal entities, product launches, and change requests Coordinate and manage relationships with internal and external auditors Skills & Qualifications Completed university or technical college degree with a focus on accounting, finance, economics, or similar Swiss CPA qualification required Minimum 5 years of experience in financial group accounting for national/international groups, auditing, or related roles Strong expertise in IFRS and/or US GAAP reporting standards Proficient with SAP, SAP S/4HANA, and SAP Group Reporting Proactive, solution-oriented, with a structured and accurate work style Fluent in written and spoken English and German
Senior Reporting and Consolidation Manager - vacancy for a Zurich-based company in the telecom sector. Your tasks: Responsible for consolidation in SAP S/4HANA and quarterly IFRS reporting Review of monthly reporting packages in coordination with the Accounting Shared-Service Center Preparation of statutory financial statements according to Swiss Code of Obligations (SCO), including reconciliation from IFRS to local GAAP Management and support in implementing new accounting standards and reporting initiatives Drive process changes and improvements across the accounting and reporting function Serve as Finance SPOC for cross-functional projects and implementations (eg software replacement, legal entity setup, new product offerings) Coordinate and manage internal and external auditors Your experience/knowledge: University degree or technical college diploma with a focus on accounting, finance, or economics CPA certification (Swiss CPA) 5+ years of experience in financial group accounting, auditing, or a similar role within a national/international company Profound knowledge of IFRS and/or US-GAAP reporting standards Extensive experience with SAP/SAP S/4HANA/SAP Group Reporting Fluent in English and German (spoken and written) Your soft skills: Structured and precise working style Proactive and solution-oriented mindset Strong collaboration and communication skills Location: Zurich, Switzerland Work setting: Hybrid Sector: Telecom Start: 01.08.2025 Duration: 3 months (trial-to-hire); Permanent contract follows Workload: 100% Ref.Nr.: BH23146
03/07/2025
Full time
Senior Reporting and Consolidation Manager - vacancy for a Zurich-based company in the telecom sector. Your tasks: Responsible for consolidation in SAP S/4HANA and quarterly IFRS reporting Review of monthly reporting packages in coordination with the Accounting Shared-Service Center Preparation of statutory financial statements according to Swiss Code of Obligations (SCO), including reconciliation from IFRS to local GAAP Management and support in implementing new accounting standards and reporting initiatives Drive process changes and improvements across the accounting and reporting function Serve as Finance SPOC for cross-functional projects and implementations (eg software replacement, legal entity setup, new product offerings) Coordinate and manage internal and external auditors Your experience/knowledge: University degree or technical college diploma with a focus on accounting, finance, or economics CPA certification (Swiss CPA) 5+ years of experience in financial group accounting, auditing, or a similar role within a national/international company Profound knowledge of IFRS and/or US-GAAP reporting standards Extensive experience with SAP/SAP S/4HANA/SAP Group Reporting Fluent in English and German (spoken and written) Your soft skills: Structured and precise working style Proactive and solution-oriented mindset Strong collaboration and communication skills Location: Zurich, Switzerland Work setting: Hybrid Sector: Telecom Start: 01.08.2025 Duration: 3 months (trial-to-hire); Permanent contract follows Workload: 100% Ref.Nr.: BH23146
*We are unable to sponsor for this permanent Full time role* *Position is bonus eligible* Prestigious Financial Institution is currently seeking a Senior Identity and Access Management Engineer with strong ForgeRock experience. Candidate will be responsible for access control and all associated programs. Applications supporting these programs include ForgeRock, SailPoint and Duo. This position has an emphasis on integrating internal applications with ForgeRock Identity suite using OAuth methodologies and custom scopes, coordinating directly with application development teams and enterprise architecture. Team Members collaborate daily for IAM System design and implementation, as well as assist with operational and customer support of the workforce in Identity and Access related functions. Team members assist with evaluating and supplementing our compliance readiness posture, assisting with the evaluation of control execution, process efficiency, and evidence gathering for internal and external auditors. Responsibilities To perform this job successfully, an individual must be able to perform each primary duty satisfactorily. Administration and configuration of our IAM products and processes with an emphasis on ForgeRock Identity products. Developing custom integration, workflows and rules between tools using Agile methodologies. Planning, implementation, enforcement and review of security policies, procedures, and controls specific to Identity Access Management. Processing access requests and issue tickets for internal and external customers Leading troubleshooting and resolution of system issues that might contribute to enterprise Production problems. Managing project work through all phases (design, build, test, cutover). Report on controls, evidence gathering and control execution. Work collaboratively across IT and Business departments to implement technical solutions Under limited direction from management, monitor, evaluate and maintain systems and procedures to enforce best practices for user access authorization and control. Research, recommend, and implement changes to procedures and systems to enhance systems security. Assist in communicating security policies and procedures to users. Assist internal and external customers with multi-platform security access issues and requests. Assist in identifying or developing tools or methods to track and monitor risk Support management with special projects and other duties as assigned Qualifications The requirements listed are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the primary functions. Report on controls, evidence gathering and control execution. Work collaboratively across IT and Business departments to implement technical solutions Under limited direction from management, monitor, evaluate and maintain systems and procedures to enforce best practices for user access authorization and control. Research, recommend, and implement changes to procedures and systems to enhance systems security. Assist in communicating security policies and procedures to users. Assist internal and external customers with multi-platform security access issues and requests. Assist in identifying or developing tools or methods to track and monitor risk Support management with special projects and other duties as assigned. Microsoft Active Directory and LDAP Microsoft Active Directory and LDAP Experience working in and developing solutions for a highly regulated environment or organization that leverages a security framework (such as NIST, COBIT, etc). Experience supporting the ForgeRock Identity Platform including Identity Gateway, Access Manager, and Directory Server. Experience with Multi-Factor authentication protocols and systems (Entrust, Duo, or similar). Experience with Single-Sign on protocols (OIDC, OAuth2.0, SAML, SWA, etc) and systems (Okta, Ping, Siteminder, or similar). Development experience: Java, Javascript, Groovy Development experience: Python and Shell Scripting Solid understanding of Encryption and Network protocols (SSL, IPV4, HTTP) Basic knowledge of Linux operating system administration. Basic knowledge of Windows server and desktop operating systems Basic knowledge of Amazon Web Services (AWS) Basic knowledge of Controls, Risk Ranking/mapping, Remediation items and general IT audit Preferred (nice to have) Sailpoint Identity IQ administration or experience E-GRC/Archer ServiceNow Mainframe architecture CA-ACF2 Mainframe access control facilities Directory services, LDAP, and their inherent security (Active Directory, CA Directory). Bachelors degree in Computer Science, Engineering, or other related field, or equivalent experience 7+ Years Identity Access Management (IAM) experience preferred Hands-on IT or security operations experience Industry recognized certifications (CISSP, ITIL, etc)
02/07/2025
Full time
*We are unable to sponsor for this permanent Full time role* *Position is bonus eligible* Prestigious Financial Institution is currently seeking a Senior Identity and Access Management Engineer with strong ForgeRock experience. Candidate will be responsible for access control and all associated programs. Applications supporting these programs include ForgeRock, SailPoint and Duo. This position has an emphasis on integrating internal applications with ForgeRock Identity suite using OAuth methodologies and custom scopes, coordinating directly with application development teams and enterprise architecture. Team Members collaborate daily for IAM System design and implementation, as well as assist with operational and customer support of the workforce in Identity and Access related functions. Team members assist with evaluating and supplementing our compliance readiness posture, assisting with the evaluation of control execution, process efficiency, and evidence gathering for internal and external auditors. Responsibilities To perform this job successfully, an individual must be able to perform each primary duty satisfactorily. Administration and configuration of our IAM products and processes with an emphasis on ForgeRock Identity products. Developing custom integration, workflows and rules between tools using Agile methodologies. Planning, implementation, enforcement and review of security policies, procedures, and controls specific to Identity Access Management. Processing access requests and issue tickets for internal and external customers Leading troubleshooting and resolution of system issues that might contribute to enterprise Production problems. Managing project work through all phases (design, build, test, cutover). Report on controls, evidence gathering and control execution. Work collaboratively across IT and Business departments to implement technical solutions Under limited direction from management, monitor, evaluate and maintain systems and procedures to enforce best practices for user access authorization and control. Research, recommend, and implement changes to procedures and systems to enhance systems security. Assist in communicating security policies and procedures to users. Assist internal and external customers with multi-platform security access issues and requests. Assist in identifying or developing tools or methods to track and monitor risk Support management with special projects and other duties as assigned Qualifications The requirements listed are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the primary functions. Report on controls, evidence gathering and control execution. Work collaboratively across IT and Business departments to implement technical solutions Under limited direction from management, monitor, evaluate and maintain systems and procedures to enforce best practices for user access authorization and control. Research, recommend, and implement changes to procedures and systems to enhance systems security. Assist in communicating security policies and procedures to users. Assist internal and external customers with multi-platform security access issues and requests. Assist in identifying or developing tools or methods to track and monitor risk Support management with special projects and other duties as assigned. Microsoft Active Directory and LDAP Microsoft Active Directory and LDAP Experience working in and developing solutions for a highly regulated environment or organization that leverages a security framework (such as NIST, COBIT, etc). Experience supporting the ForgeRock Identity Platform including Identity Gateway, Access Manager, and Directory Server. Experience with Multi-Factor authentication protocols and systems (Entrust, Duo, or similar). Experience with Single-Sign on protocols (OIDC, OAuth2.0, SAML, SWA, etc) and systems (Okta, Ping, Siteminder, or similar). Development experience: Java, Javascript, Groovy Development experience: Python and Shell Scripting Solid understanding of Encryption and Network protocols (SSL, IPV4, HTTP) Basic knowledge of Linux operating system administration. Basic knowledge of Windows server and desktop operating systems Basic knowledge of Amazon Web Services (AWS) Basic knowledge of Controls, Risk Ranking/mapping, Remediation items and general IT audit Preferred (nice to have) Sailpoint Identity IQ administration or experience E-GRC/Archer ServiceNow Mainframe architecture CA-ACF2 Mainframe access control facilities Directory services, LDAP, and their inherent security (Active Directory, CA Directory). Bachelors degree in Computer Science, Engineering, or other related field, or equivalent experience 7+ Years Identity Access Management (IAM) experience preferred Hands-on IT or security operations experience Industry recognized certifications (CISSP, ITIL, etc)
NO SPONSORSHIP Internal Audit Information Technology & Security SALARY: $80k - $108k - $110 plus 10% bonus LOCATION: Chicago, IL 3 days onsite and 2 days remote Looking for a candidate with a BS Degree, 2 years audit related experience in conducting risk-based information, technology and security audits. Project cyber security review and internal audit standards AICPA, IIA IPPF COBIT NIST CSF This role will support independent assessments of the Information Technology and Security environment, risk management, and other objectives as needed. The role is responsible for determining the sufficiency of management's controls and activities related to the management of regulatory, operational, and strategic risks and presenting recommendations for improvements to the engagement team. Support the team on delivery of assigned audits within the annual audit plan. Support the team confirming a professional auditee experience. Owning the audit quality, accuracy of results, and delivery in a timely manner. Proactively identify regulatory, operational, and/or strategic risks to the organization and bring them to your engagement team. Evaluate exceptions or inefficient practices for root causes and propose advice and recommendations for achievable solutions. Leading audits related to organization changes including business requirements definitions, technology implementations Qualifications: Experience working in a complex, fast paced environment. [Preferred] Consulting and/or accounting firm experience. [Preferred] Experience in Financial Services/Security Industry and working with regulations such as Regulation Systems Compliance and Integrity (Reg SCI). [Preferred] Experience using the principles, practices, and techniques involved in conducting audits in accordance with the requirements set forth in the International Standards for the Professional Practice of Internal Auditing published by the Institute of Internal Auditors (IIA). Technical Skills: Microsoft Office applications [Preferred] Familiarity with security tools such as: CyberArk, Splunk, SailPoint [Preferred] Familiarity with change management tools such as: ServiceNow, Jira, Confluence, GitHub [Preferred] Familiarity with databases such as: Oracle, DB2, SQL [Preferred] Familiarity with cloud based solutions: AWS, Workday [Preferred] Proficiency using Archer or other audit or Governance Risk and Compliance (GRC) software Education and/or Experience: Bachelors degree (or equivalent) in Information Technology, Computer Science, Computer Engineering, Accounting, Finance, Business Administration, or related field. 2+ years of experience (audit-related) in conducting risk-based Information Technology and Security audits and projects, cyber security reviews, and internal audits.
02/07/2025
Full time
NO SPONSORSHIP Internal Audit Information Technology & Security SALARY: $80k - $108k - $110 plus 10% bonus LOCATION: Chicago, IL 3 days onsite and 2 days remote Looking for a candidate with a BS Degree, 2 years audit related experience in conducting risk-based information, technology and security audits. Project cyber security review and internal audit standards AICPA, IIA IPPF COBIT NIST CSF This role will support independent assessments of the Information Technology and Security environment, risk management, and other objectives as needed. The role is responsible for determining the sufficiency of management's controls and activities related to the management of regulatory, operational, and strategic risks and presenting recommendations for improvements to the engagement team. Support the team on delivery of assigned audits within the annual audit plan. Support the team confirming a professional auditee experience. Owning the audit quality, accuracy of results, and delivery in a timely manner. Proactively identify regulatory, operational, and/or strategic risks to the organization and bring them to your engagement team. Evaluate exceptions or inefficient practices for root causes and propose advice and recommendations for achievable solutions. Leading audits related to organization changes including business requirements definitions, technology implementations Qualifications: Experience working in a complex, fast paced environment. [Preferred] Consulting and/or accounting firm experience. [Preferred] Experience in Financial Services/Security Industry and working with regulations such as Regulation Systems Compliance and Integrity (Reg SCI). [Preferred] Experience using the principles, practices, and techniques involved in conducting audits in accordance with the requirements set forth in the International Standards for the Professional Practice of Internal Auditing published by the Institute of Internal Auditors (IIA). Technical Skills: Microsoft Office applications [Preferred] Familiarity with security tools such as: CyberArk, Splunk, SailPoint [Preferred] Familiarity with change management tools such as: ServiceNow, Jira, Confluence, GitHub [Preferred] Familiarity with databases such as: Oracle, DB2, SQL [Preferred] Familiarity with cloud based solutions: AWS, Workday [Preferred] Proficiency using Archer or other audit or Governance Risk and Compliance (GRC) software Education and/or Experience: Bachelors degree (or equivalent) in Information Technology, Computer Science, Computer Engineering, Accounting, Finance, Business Administration, or related field. 2+ years of experience (audit-related) in conducting risk-based Information Technology and Security audits and projects, cyber security reviews, and internal audits.
NO SPONSORSHIP Senior Associate, Internal Audit Information Technology & Security SALARY: $80k - $105k - $110k plus 10% bonus LOCATION: Dallas, TX 3 days onsite The preference is somebody out of a public accounting firm or a big four firm You will be doing IT audit across the enterprise, meaning applications infrastructure and security Financial services is highly preferred because this is highly regulated. You will be doing compliance assessments also Looking for a candidate with a BS Degree, minimum 2 years, audit related in conducting risk-based information technology and security audits. Cyber security reviews and internal audit. Experience [Preferred] Consulting and/or accounting firm experience. [Preferred] Experience in Financial Services/Security Industry and working with regulations such as Regulation Systems Compliance and Integrity (Reg SCI). [Preferred] Experience using the principles, practices, and techniques involved in conducting audits in accordance with the requirements set forth in the International Standards for the Professional Practice of Internal Auditing published by the Institute of Internal Auditors (IIA). Technical Skills: [Required] Microsoft Office applications [Preferred] Familiarity with security tools such as: CyberArk, Splunk, SailPoint [Preferred] Familiarity with change management tools such as: ServiceNow, Jira, Confluence, GitHub [Preferred] Familiarity with databases such as: Oracle, DB2, SQL [Preferred] Familiarity with cloud based solutions: AWS, Workday [Preferred] Proficiency using Archer or other audit or Governance Risk and Compliance (GRC) software Education and/or Experience: Bachelors degree 2+ years of experience (audit-related) in conducting risk-based Information Technology and Security audits and projects, cyber security reviews, and internal audits. Certificates or Licenses: [Preferred] Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), Certification in Risk Management Assurance (CRMA), Certified Internal Auditor (CIA), Certified Public Accountant (CPA), or equivalent.
02/07/2025
Full time
NO SPONSORSHIP Senior Associate, Internal Audit Information Technology & Security SALARY: $80k - $105k - $110k plus 10% bonus LOCATION: Dallas, TX 3 days onsite The preference is somebody out of a public accounting firm or a big four firm You will be doing IT audit across the enterprise, meaning applications infrastructure and security Financial services is highly preferred because this is highly regulated. You will be doing compliance assessments also Looking for a candidate with a BS Degree, minimum 2 years, audit related in conducting risk-based information technology and security audits. Cyber security reviews and internal audit. Experience [Preferred] Consulting and/or accounting firm experience. [Preferred] Experience in Financial Services/Security Industry and working with regulations such as Regulation Systems Compliance and Integrity (Reg SCI). [Preferred] Experience using the principles, practices, and techniques involved in conducting audits in accordance with the requirements set forth in the International Standards for the Professional Practice of Internal Auditing published by the Institute of Internal Auditors (IIA). Technical Skills: [Required] Microsoft Office applications [Preferred] Familiarity with security tools such as: CyberArk, Splunk, SailPoint [Preferred] Familiarity with change management tools such as: ServiceNow, Jira, Confluence, GitHub [Preferred] Familiarity with databases such as: Oracle, DB2, SQL [Preferred] Familiarity with cloud based solutions: AWS, Workday [Preferred] Proficiency using Archer or other audit or Governance Risk and Compliance (GRC) software Education and/or Experience: Bachelors degree 2+ years of experience (audit-related) in conducting risk-based Information Technology and Security audits and projects, cyber security reviews, and internal audits. Certificates or Licenses: [Preferred] Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), Certification in Risk Management Assurance (CRMA), Certified Internal Auditor (CIA), Certified Public Accountant (CPA), or equivalent.
*Hybrid, 3 days onsite, 2 days remote* *We are unable to sponsor as this is a permanent Full time role* A prestigious company is looking for a Senior Associate, Internal Audit IT & Security. This internal auditor will need 2+ years of experience conducting risk-based information technology and security audits. This is a highly regulated financial environment, and these audits will follow AICPA, IIA, IPPF, COBIT, NIST, and CSF standards/frameworks. Responsibilities: Support the team on delivery of assigned audits within the annual audit plan. Support the team confirming a professional auditee experience. Owning the audit quality, accuracy of results, and delivery in a timely manner. Proactively identify regulatory, operational, and/or strategic risks to the organization and bring them to your engagement team. Evaluate exceptions or inefficient practices for root causes and propose advice and recommendations for achievable solutions. Leading audits related to organization changes including business requirements definitions, technology implementations (eg, change management, security), engagement and alignment of change initiatives to business objectives. Maintaining an understanding of policies, procedures, standards, and supporting technologies, and educating staff accordingly, to effectively identify potential risks and alternatives to mitigate risk exposure leveraging leading practices. Ability to understand professional principles and standards (eg, AICPA, IIA IPPF, COBIT, NIST CSF) and the relevancy to risk management and impact on policies and procedures. In addition, leveraging these principles and standards to test and evaluate corporate risk management processes and control. Keeping current on best practices and emerging risks within the financial services industry and making recommendations for improvements as necessary. Qualifications Bachelor's degree (or equivalent) in Information Technology, Computer Science, Computer Engineering, Accounting, Finance, Business Administration, or related field. 2+ years of experience (audit-related) in conducting risk-based Information Technology and Security audits and projects, cyber security reviews, and internal audits. Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), Certification in Risk Management Assurance (CRMA), Certified Internal Auditor (CIA), Certified Public Accountant (CPA), or equivalent. Consulting and/or accounting firm experience. Experience in Financial Services/Security Industry and working with regulations such as Regulation Systems Compliance and Integrity (Reg SCI). Experience using the principles, practices, and techniques involved in conducting audits in accordance with the requirements set forth in the International Standards for the Professional Practice of Internal Auditing published by the Institute of Internal Auditors (IIA). Microsoft Office applications Proficiency using Archer or other audit or Governance Risk and Compliance (GRC) software
02/07/2025
Full time
*Hybrid, 3 days onsite, 2 days remote* *We are unable to sponsor as this is a permanent Full time role* A prestigious company is looking for a Senior Associate, Internal Audit IT & Security. This internal auditor will need 2+ years of experience conducting risk-based information technology and security audits. This is a highly regulated financial environment, and these audits will follow AICPA, IIA, IPPF, COBIT, NIST, and CSF standards/frameworks. Responsibilities: Support the team on delivery of assigned audits within the annual audit plan. Support the team confirming a professional auditee experience. Owning the audit quality, accuracy of results, and delivery in a timely manner. Proactively identify regulatory, operational, and/or strategic risks to the organization and bring them to your engagement team. Evaluate exceptions or inefficient practices for root causes and propose advice and recommendations for achievable solutions. Leading audits related to organization changes including business requirements definitions, technology implementations (eg, change management, security), engagement and alignment of change initiatives to business objectives. Maintaining an understanding of policies, procedures, standards, and supporting technologies, and educating staff accordingly, to effectively identify potential risks and alternatives to mitigate risk exposure leveraging leading practices. Ability to understand professional principles and standards (eg, AICPA, IIA IPPF, COBIT, NIST CSF) and the relevancy to risk management and impact on policies and procedures. In addition, leveraging these principles and standards to test and evaluate corporate risk management processes and control. Keeping current on best practices and emerging risks within the financial services industry and making recommendations for improvements as necessary. Qualifications Bachelor's degree (or equivalent) in Information Technology, Computer Science, Computer Engineering, Accounting, Finance, Business Administration, or related field. 2+ years of experience (audit-related) in conducting risk-based Information Technology and Security audits and projects, cyber security reviews, and internal audits. Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), Certification in Risk Management Assurance (CRMA), Certified Internal Auditor (CIA), Certified Public Accountant (CPA), or equivalent. Consulting and/or accounting firm experience. Experience in Financial Services/Security Industry and working with regulations such as Regulation Systems Compliance and Integrity (Reg SCI). Experience using the principles, practices, and techniques involved in conducting audits in accordance with the requirements set forth in the International Standards for the Professional Practice of Internal Auditing published by the Institute of Internal Auditors (IIA). Microsoft Office applications Proficiency using Archer or other audit or Governance Risk and Compliance (GRC) software
Request Technology - Craig Johnson
Chicago, Illinois
*We are unable to sponsor for this permanent Full time role* *Position is bonus eligible* Prestigious Financial Institution is currently seeking a Senior Identity and Access Management Engineer with strong ForgeRock experience. Candidate will be responsible for access control and all associated programs. Applications supporting these programs include ForgeRock, SailPoint and Duo. This position has an emphasis on integrating internal applications with ForgeRock Identity suite using OAuth methodologies and custom scopes, coordinating directly with application development teams and enterprise architecture. Team Members collaborate daily for IAM System design and implementation, as well as assist with operational and customer support of the workforce in Identity and Access related functions. Team members assist with evaluating and supplementing our compliance readiness posture, assisting with the evaluation of control execution, process efficiency, and evidence gathering for internal and external auditors. Responsibilities To perform this job successfully, an individual must be able to perform each primary duty satisfactorily. Administration and configuration of our IAM products and processes with an emphasis on ForgeRock Identity products. Developing custom integration, workflows and rules between tools using Agile methodologies. Planning, implementation, enforcement and review of security policies, procedures, and controls specific to Identity Access Management. Processing access requests and issue tickets for internal and external customers Leading troubleshooting and resolution of system issues that might contribute to enterprise Production problems. Managing project work through all phases (design, build, test, cutover). Report on controls, evidence gathering and control execution. Work collaboratively across IT and Business departments to implement technical solutions Under limited direction from management, monitor, evaluate and maintain systems and procedures to enforce best practices for user access authorization and control. Research, recommend, and implement changes to procedures and systems to enhance systems security. Assist in communicating security policies and procedures to users. Assist internal and external customers with multi-platform security access issues and requests. Assist in identifying or developing tools or methods to track and monitor risk Support management with special projects and other duties as assigned Qualifications The requirements listed are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the primary functions. Report on controls, evidence gathering and control execution. Work collaboratively across IT and Business departments to implement technical solutions Under limited direction from management, monitor, evaluate and maintain systems and procedures to enforce best practices for user access authorization and control. Research, recommend, and implement changes to procedures and systems to enhance systems security. Assist in communicating security policies and procedures to users. Assist internal and external customers with multi-platform security access issues and requests. Assist in identifying or developing tools or methods to track and monitor risk Support management with special projects and other duties as assigned. Microsoft Active Directory and LDAP Microsoft Active Directory and LDAP Experience working in and developing solutions for a highly regulated environment or organization that leverages a security framework (such as NIST, COBIT, etc). Experience supporting the ForgeRock Identity Platform including Identity Gateway, Access Manager, and Directory Server. Experience with Multi-Factor authentication protocols and systems (Entrust, Duo, or similar). Experience with Single-Sign on protocols (OIDC, OAuth2.0, SAML, SWA, etc) and systems (Okta, Ping, Siteminder, or similar). Development experience: Java, Javascript, Groovy Development experience: Python and Shell Scripting Solid understanding of Encryption and Network protocols (SSL, IPV4, HTTP) Basic knowledge of Linux operating system administration. Basic knowledge of Windows server and desktop operating systems Basic knowledge of Amazon Web Services (AWS) Basic knowledge of Controls, Risk Ranking/mapping, Remediation items and general IT audit Preferred (nice to have) Sailpoint Identity IQ administration or experience E-GRC/Archer ServiceNow Mainframe architecture CA-ACF2 Mainframe access control facilities Directory services, LDAP, and their inherent security (Active Directory, CA Directory). Bachelors degree in Computer Science, Engineering, or other related field, or equivalent experience 7+ Years Identity Access Management (IAM) experience preferred Hands-on IT or security operations experience Industry recognized certifications (CISSP, ITIL, etc)
02/07/2025
Full time
*We are unable to sponsor for this permanent Full time role* *Position is bonus eligible* Prestigious Financial Institution is currently seeking a Senior Identity and Access Management Engineer with strong ForgeRock experience. Candidate will be responsible for access control and all associated programs. Applications supporting these programs include ForgeRock, SailPoint and Duo. This position has an emphasis on integrating internal applications with ForgeRock Identity suite using OAuth methodologies and custom scopes, coordinating directly with application development teams and enterprise architecture. Team Members collaborate daily for IAM System design and implementation, as well as assist with operational and customer support of the workforce in Identity and Access related functions. Team members assist with evaluating and supplementing our compliance readiness posture, assisting with the evaluation of control execution, process efficiency, and evidence gathering for internal and external auditors. Responsibilities To perform this job successfully, an individual must be able to perform each primary duty satisfactorily. Administration and configuration of our IAM products and processes with an emphasis on ForgeRock Identity products. Developing custom integration, workflows and rules between tools using Agile methodologies. Planning, implementation, enforcement and review of security policies, procedures, and controls specific to Identity Access Management. Processing access requests and issue tickets for internal and external customers Leading troubleshooting and resolution of system issues that might contribute to enterprise Production problems. Managing project work through all phases (design, build, test, cutover). Report on controls, evidence gathering and control execution. Work collaboratively across IT and Business departments to implement technical solutions Under limited direction from management, monitor, evaluate and maintain systems and procedures to enforce best practices for user access authorization and control. Research, recommend, and implement changes to procedures and systems to enhance systems security. Assist in communicating security policies and procedures to users. Assist internal and external customers with multi-platform security access issues and requests. Assist in identifying or developing tools or methods to track and monitor risk Support management with special projects and other duties as assigned Qualifications The requirements listed are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the primary functions. Report on controls, evidence gathering and control execution. Work collaboratively across IT and Business departments to implement technical solutions Under limited direction from management, monitor, evaluate and maintain systems and procedures to enforce best practices for user access authorization and control. Research, recommend, and implement changes to procedures and systems to enhance systems security. Assist in communicating security policies and procedures to users. Assist internal and external customers with multi-platform security access issues and requests. Assist in identifying or developing tools or methods to track and monitor risk Support management with special projects and other duties as assigned. Microsoft Active Directory and LDAP Microsoft Active Directory and LDAP Experience working in and developing solutions for a highly regulated environment or organization that leverages a security framework (such as NIST, COBIT, etc). Experience supporting the ForgeRock Identity Platform including Identity Gateway, Access Manager, and Directory Server. Experience with Multi-Factor authentication protocols and systems (Entrust, Duo, or similar). Experience with Single-Sign on protocols (OIDC, OAuth2.0, SAML, SWA, etc) and systems (Okta, Ping, Siteminder, or similar). Development experience: Java, Javascript, Groovy Development experience: Python and Shell Scripting Solid understanding of Encryption and Network protocols (SSL, IPV4, HTTP) Basic knowledge of Linux operating system administration. Basic knowledge of Windows server and desktop operating systems Basic knowledge of Amazon Web Services (AWS) Basic knowledge of Controls, Risk Ranking/mapping, Remediation items and general IT audit Preferred (nice to have) Sailpoint Identity IQ administration or experience E-GRC/Archer ServiceNow Mainframe architecture CA-ACF2 Mainframe access control facilities Directory services, LDAP, and their inherent security (Active Directory, CA Directory). Bachelors degree in Computer Science, Engineering, or other related field, or equivalent experience 7+ Years Identity Access Management (IAM) experience preferred Hands-on IT or security operations experience Industry recognized certifications (CISSP, ITIL, etc)
*We are unable to sponsor for this permanent Full time role* *Position is bonus eligible* Prestigious Financial Company is currently seeking an Information Technology Internal Auditor. Candidate will support independent assessments of the Information Technology and Security environment, risk management, and other objectives as needed. The role is responsible for determining the sufficiency of management's controls and activities related to the management of regulatory, operational, and strategic risks and presenting recommendations for improvements to the engagement team. Responsibilities: Support the team on delivery of assigned audits within the annual audit plan. Support the team confirming a professional auditee experience. Owning the audit quality, accuracy of results, and delivery in a timely manner. Proactively identify regulatory, operational, and/or strategic risks to the organization and bring them to your engagement team. Evaluate exceptions or inefficient practices for root causes and propose advice and recommendations for achievable solutions. Leading audits related to organization changes including business requirements definitions, technology implementations (eg, change management, security), engagement and alignment of change initiatives to business objectives. Maintaining an understanding of policies, procedures, standards, and supporting technologies, and educating staff accordingly, to effectively identify potential risks and alternatives to mitigate risk exposure leveraging leading practices. Ability to understand professional principles and standards (eg, AICPA, IIA IPPF, COBIT, NIST CSF) and the relevancy to risk management and impact on policies and procedures. In addition, leveraging these principles and standards to test and evaluate corporate risk management processes and control. Keeping current on best practices and emerging risks within the financial services industry and making recommendations for improvements as necessary. Qualifications Ability to communicate clearly and effectively, both orally and in writing, including the ability to handle potentially sensitive situations and discussions. Strong problem solving and analytical capabilities. Demonstrated ability to gather, analyze, and evaluate facts, and prepare and present concise oral and written reports. Ability to work independently or as part of a team, prioritizing multiple audit assignments to simultaneously complete each in a timely fashion. [Preferred] Experience working in a complex, fast paced environment. [Preferred] Consulting and/or accounting firm experience. [Preferred] Experience in Financial Services/Security Industry and working with regulations such as Regulation Systems Compliance and Integrity (Reg SCI). [Preferred] Experience using the principles, practices, and techniques involved in conducting audits in accordance with the requirements set forth in the International Standards for the Professional Practice of Internal Auditing published by the Institute of Internal Auditors (IIA). [Required] Microsoft Office applications [Preferred] Familiarity with security tools such as: CyberArk, Splunk, SailPoint [Preferred] Familiarity with change management tools such as: ServiceNow, Jira, Confluence, GitHub [Preferred] Familiarity with databases such as: Oracle, DB2, SQL [Preferred] Familiarity with cloud based solutions: AWS, Workday [Preferred] Proficiency using Archer or other audit or Governance Risk and Compliance (GRC) software Education: [Required] Bachelors degree (or equivalent) in Information Technology, Computer Science, Computer Engineering, Accounting, Finance, Business Administration, or related field. [Required] 2+ years of experience (audit-related) in conducting risk-based Information Technology and Security audits and projects, cyber security reviews, and internal audits. [Preferred] Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), Certification in Risk Management Assurance (CRMA), Certified Internal Auditor (CIA), Certified Public Accountant (CPA), or equivalent.
01/07/2025
Full time
*We are unable to sponsor for this permanent Full time role* *Position is bonus eligible* Prestigious Financial Company is currently seeking an Information Technology Internal Auditor. Candidate will support independent assessments of the Information Technology and Security environment, risk management, and other objectives as needed. The role is responsible for determining the sufficiency of management's controls and activities related to the management of regulatory, operational, and strategic risks and presenting recommendations for improvements to the engagement team. Responsibilities: Support the team on delivery of assigned audits within the annual audit plan. Support the team confirming a professional auditee experience. Owning the audit quality, accuracy of results, and delivery in a timely manner. Proactively identify regulatory, operational, and/or strategic risks to the organization and bring them to your engagement team. Evaluate exceptions or inefficient practices for root causes and propose advice and recommendations for achievable solutions. Leading audits related to organization changes including business requirements definitions, technology implementations (eg, change management, security), engagement and alignment of change initiatives to business objectives. Maintaining an understanding of policies, procedures, standards, and supporting technologies, and educating staff accordingly, to effectively identify potential risks and alternatives to mitigate risk exposure leveraging leading practices. Ability to understand professional principles and standards (eg, AICPA, IIA IPPF, COBIT, NIST CSF) and the relevancy to risk management and impact on policies and procedures. In addition, leveraging these principles and standards to test and evaluate corporate risk management processes and control. Keeping current on best practices and emerging risks within the financial services industry and making recommendations for improvements as necessary. Qualifications Ability to communicate clearly and effectively, both orally and in writing, including the ability to handle potentially sensitive situations and discussions. Strong problem solving and analytical capabilities. Demonstrated ability to gather, analyze, and evaluate facts, and prepare and present concise oral and written reports. Ability to work independently or as part of a team, prioritizing multiple audit assignments to simultaneously complete each in a timely fashion. [Preferred] Experience working in a complex, fast paced environment. [Preferred] Consulting and/or accounting firm experience. [Preferred] Experience in Financial Services/Security Industry and working with regulations such as Regulation Systems Compliance and Integrity (Reg SCI). [Preferred] Experience using the principles, practices, and techniques involved in conducting audits in accordance with the requirements set forth in the International Standards for the Professional Practice of Internal Auditing published by the Institute of Internal Auditors (IIA). [Required] Microsoft Office applications [Preferred] Familiarity with security tools such as: CyberArk, Splunk, SailPoint [Preferred] Familiarity with change management tools such as: ServiceNow, Jira, Confluence, GitHub [Preferred] Familiarity with databases such as: Oracle, DB2, SQL [Preferred] Familiarity with cloud based solutions: AWS, Workday [Preferred] Proficiency using Archer or other audit or Governance Risk and Compliance (GRC) software Education: [Required] Bachelors degree (or equivalent) in Information Technology, Computer Science, Computer Engineering, Accounting, Finance, Business Administration, or related field. [Required] 2+ years of experience (audit-related) in conducting risk-based Information Technology and Security audits and projects, cyber security reviews, and internal audits. [Preferred] Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), Certification in Risk Management Assurance (CRMA), Certified Internal Auditor (CIA), Certified Public Accountant (CPA), or equivalent.
Request Technology - Craig Johnson
Chicago, Illinois
*We are unable to sponsor for this permanent Full time role* *Position is bonus eligible* Prestigious Financial Company is currently seeking an Information Technology Internal Auditor. Candidate will support independent assessments of the Information Technology and Security environment, risk management, and other objectives as needed. The role is responsible for determining the sufficiency of management's controls and activities related to the management of regulatory, operational, and strategic risks and presenting recommendations for improvements to the engagement team. Responsibilities: Support the team on delivery of assigned audits within the annual audit plan. Support the team confirming a professional auditee experience. Owning the audit quality, accuracy of results, and delivery in a timely manner. Proactively identify regulatory, operational, and/or strategic risks to the organization and bring them to your engagement team. Evaluate exceptions or inefficient practices for root causes and propose advice and recommendations for achievable solutions. Leading audits related to organization changes including business requirements definitions, technology implementations (eg, change management, security), engagement and alignment of change initiatives to business objectives. Maintaining an understanding of policies, procedures, standards, and supporting technologies, and educating staff accordingly, to effectively identify potential risks and alternatives to mitigate risk exposure leveraging leading practices. Ability to understand professional principles and standards (eg, AICPA, IIA IPPF, COBIT, NIST CSF) and the relevancy to risk management and impact on policies and procedures. In addition, leveraging these principles and standards to test and evaluate corporate risk management processes and control. Keeping current on best practices and emerging risks within the financial services industry and making recommendations for improvements as necessary. Qualifications Ability to communicate clearly and effectively, both orally and in writing, including the ability to handle potentially sensitive situations and discussions. Strong problem solving and analytical capabilities. Demonstrated ability to gather, analyze, and evaluate facts, and prepare and present concise oral and written reports. Ability to work independently or as part of a team, prioritizing multiple audit assignments to simultaneously complete each in a timely fashion. [Preferred] Experience working in a complex, fast paced environment. [Preferred] Consulting and/or accounting firm experience. [Preferred] Experience in Financial Services/Security Industry and working with regulations such as Regulation Systems Compliance and Integrity (Reg SCI). [Preferred] Experience using the principles, practices, and techniques involved in conducting audits in accordance with the requirements set forth in the International Standards for the Professional Practice of Internal Auditing published by the Institute of Internal Auditors (IIA). [Required] Microsoft Office applications [Preferred] Familiarity with security tools such as: CyberArk, Splunk, SailPoint [Preferred] Familiarity with change management tools such as: ServiceNow, Jira, Confluence, GitHub [Preferred] Familiarity with databases such as: Oracle, DB2, SQL [Preferred] Familiarity with cloud based solutions: AWS, Workday [Preferred] Proficiency using Archer or other audit or Governance Risk and Compliance (GRC) software Education: [Required] Bachelors degree (or equivalent) in Information Technology, Computer Science, Computer Engineering, Accounting, Finance, Business Administration, or related field. [Required] 2+ years of experience (audit-related) in conducting risk-based Information Technology and Security audits and projects, cyber security reviews, and internal audits. [Preferred] Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), Certification in Risk Management Assurance (CRMA), Certified Internal Auditor (CIA), Certified Public Accountant (CPA), or equivalent.
30/06/2025
Full time
*We are unable to sponsor for this permanent Full time role* *Position is bonus eligible* Prestigious Financial Company is currently seeking an Information Technology Internal Auditor. Candidate will support independent assessments of the Information Technology and Security environment, risk management, and other objectives as needed. The role is responsible for determining the sufficiency of management's controls and activities related to the management of regulatory, operational, and strategic risks and presenting recommendations for improvements to the engagement team. Responsibilities: Support the team on delivery of assigned audits within the annual audit plan. Support the team confirming a professional auditee experience. Owning the audit quality, accuracy of results, and delivery in a timely manner. Proactively identify regulatory, operational, and/or strategic risks to the organization and bring them to your engagement team. Evaluate exceptions or inefficient practices for root causes and propose advice and recommendations for achievable solutions. Leading audits related to organization changes including business requirements definitions, technology implementations (eg, change management, security), engagement and alignment of change initiatives to business objectives. Maintaining an understanding of policies, procedures, standards, and supporting technologies, and educating staff accordingly, to effectively identify potential risks and alternatives to mitigate risk exposure leveraging leading practices. Ability to understand professional principles and standards (eg, AICPA, IIA IPPF, COBIT, NIST CSF) and the relevancy to risk management and impact on policies and procedures. In addition, leveraging these principles and standards to test and evaluate corporate risk management processes and control. Keeping current on best practices and emerging risks within the financial services industry and making recommendations for improvements as necessary. Qualifications Ability to communicate clearly and effectively, both orally and in writing, including the ability to handle potentially sensitive situations and discussions. Strong problem solving and analytical capabilities. Demonstrated ability to gather, analyze, and evaluate facts, and prepare and present concise oral and written reports. Ability to work independently or as part of a team, prioritizing multiple audit assignments to simultaneously complete each in a timely fashion. [Preferred] Experience working in a complex, fast paced environment. [Preferred] Consulting and/or accounting firm experience. [Preferred] Experience in Financial Services/Security Industry and working with regulations such as Regulation Systems Compliance and Integrity (Reg SCI). [Preferred] Experience using the principles, practices, and techniques involved in conducting audits in accordance with the requirements set forth in the International Standards for the Professional Practice of Internal Auditing published by the Institute of Internal Auditors (IIA). [Required] Microsoft Office applications [Preferred] Familiarity with security tools such as: CyberArk, Splunk, SailPoint [Preferred] Familiarity with change management tools such as: ServiceNow, Jira, Confluence, GitHub [Preferred] Familiarity with databases such as: Oracle, DB2, SQL [Preferred] Familiarity with cloud based solutions: AWS, Workday [Preferred] Proficiency using Archer or other audit or Governance Risk and Compliance (GRC) software Education: [Required] Bachelors degree (or equivalent) in Information Technology, Computer Science, Computer Engineering, Accounting, Finance, Business Administration, or related field. [Required] 2+ years of experience (audit-related) in conducting risk-based Information Technology and Security audits and projects, cyber security reviews, and internal audits. [Preferred] Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), Certification in Risk Management Assurance (CRMA), Certified Internal Auditor (CIA), Certified Public Accountant (CPA), or equivalent.
