• Information Systems Controls Analyst

    Location US-NC-Raleigh
    Posting date 1 week ago(11/9/2018 2:51 AM)
    Job ID
    66357
    Category
    Finance
  • Company description

    At Red Hat, we connect an innovative community of customers, partners, and contributors to deliver an open source stack of trusted, high-performing solutions. We offer cloud, Linux, middleware, storage, and virtualization technologies, together with award-winning global customer support, consulting, and implementation services. Red Hat is a rapidly growing company supporting more than 90% of Fortune 500 companies.

    Job summary

    The Red Hat Finance team is looking for an Information Systems Controls Analyst to join us in Raleigh. NC. In this role, you will contribute to risk management, effective control design, QA of controls, and monitoring of control implementation. You will support the Red Hat team in all aspects of application and IT infrastructure control design. As a key risk adviser, you will be addressing business issues and processes that impact both current and future IT systems that come into scope for the IT general controls (ITGC) and application control requirements. You will also maintain visibility to control status and track any issues to resolution. This role requires the ability to work cross-functionally with IT, business teams, and key stakeholders, using analytical skills in dissecting complex problems, and delivering clear recommendations to reduce risk and improve control results.

    Primary job responsibilities

    • Assess IT risk and design controls to address that risk through collaboration with IT, internal audit, finance, and other stakeholders
    • Support compliance assessments across a broad range of programs, including Sarbanes-Oxley (SOX), Payment Card Industry Data Security Standard (PCI DSS), SOC 1 (Service Organization Control) report, and other assurance programs as needed
    • Collaborate with other team members to identify continuous compliance opportunities
    • Collaborate and coordinate with Information Security, Internal Audit, External Audit, Business and other IT Compliance teams on assessments and control design recommendations
    • Support validation of Internal and External Audit findings and partner with stakeholders on responses, ensuring that remediation plans align with IT Security and Architecture direction

    Required skills

    • 5-8 years of working experience in IT SOX compliance or IT auditing
    • Engaged, strategic approach to problem solving and controls implementation
    • Knowledge of current technological trends and developments in the area of SOX, PCAOB, and auditing standards
    • Solid analytical, interpersonal, and communication skills
    • Demonstrated ability to collaborate with a diverse set of internal and external stakeholders, including senior leaders, business and functional representatives, and vendors or consulting partners
    • Ability to identify project impacting issues and work with control owners and various IT solution teams to develop and implement solutions
    • Solid collaboration skills and demonstrated ability to approach technical and business solutions in a consultative manner
    • Industry-related certification preferred (e.g. CISA, PMP, CIA)
    • General awareness of the following IT process areas:
      • Change management
      • Logical access
      • IT Operations
      • Interfaces for multiple platforms and applications
    • General awareness of design and operating effectiveness reviews, including implementing, reporting and developing remediation recommendations
    • Bachelor's degree in accounting, business, IT, or computer science is preferred


    Red Hat is proud to be an equal opportunity workplace and an affirmative action employer. We review applications for employment without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, ancestry, citizenship, age, veteran status, genetic information, physical or mental disability, medical condition, marital status, or any other basis prohibited by law.


    Red Hat does not seek or accept unsolicited resumes or CVs from recruitment agencies. We are not responsible for, and will not pay, any fees, commissions, or any other payment related to unsolicited resumes or CVs except as required in a written contract between Red Hat and the recruitment agency or party requesting payment of a fee.

     

    Interested in this job?

    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed