What you’ll be doing (ie. job duties):
Facilitate external audit activities including coordination with external auditors and internal stakeholders for required walkthroughs and facilitation of audit requests
Perform regulatory requirement gap assessments for Institutional services, track remediation efforts to completion, and facilitate audits with external auditors
Work closely with internal and external auditors on control operation and related documentation
Communicate progress, escalations, and issue resolutions to management and team stakeholders
Create procedural documentation, including training materials or process documentation
Skills:
What we look for in you (ie. job requirements):
4+ years of security/IT compliance or equivalent experience
Proven ability to redesign IT processes and identify control gaps to ensure alignment with a mature ICFR program, incorporating IT risks and controls
Hands-on experience with implementing, reviewing or auditing security frameworks such as SOC 1, SOC 2, ICFR/SOX, NIST, ISO
Prior experience working closely with auditors and/or external regulators
Understand how to onboard, document and test new IT general and application controls
Security certifications
Experience with compliance initiatives from start to finish
Outstanding written and spoken communication skills
Ability to effectively and autonomously accomplish outcomes across cross-functional teams in ambiguous situations with light supervision
Ability to multitask, prioritize work, and meet deadlines in a fast paced environment
Focus on precision and accuracy, and the drive to clarify ambiguity
Experience with cloud computing and being able to understand and discuss systems architecture concepts
Nice to haves:
Prior experience at a Big 4 or consulting experience in Cybersecurity preferred
Experience mapping common controls across multiple frameworks in a GRC tool
Financial services or financial regulatory experience