• Information Systems Controls Analyst

    Location US-NC-Raleigh
    Posting date 2 months ago(10/21/2019 3:02 AM)
    Job ID
  • Company description

    At Red Hat, we connect an innovative community of customers, partners, and contributors to deliver an open source stack of trusted, high-performing solutions. We offer cloud, Linux, middleware, storage, and virtualization technologies, together with award-winning global customer support, consulting, and implementation services. Red Hat is a rapidly growing company supporting more than 90% of Fortune 500 companies.

    Job summary

    The Red Hat Finance team is looking for an Information Systems Controls Analyst to join us in Raleigh, NC. In this role, you will contribute to risk management, effective control design, quality assurance (QA) of controls, and monitoring of control implementation. You will support the Red Hat team in all aspects of application and IT infrastructure control design. As a key risk advisor, you will address business issues and processes that impact both current and future IT systems that come into scope for IT general controls (ITGC) and application control requirements. As an Information Systems Controls Analyst, you will also maintain visibility to control status and track any issues to resolution. You’ll need to have the ability to work cross-functionally with IT, business teams, and key stakeholders, using analytical skills in dissecting complex problems and delivering clear recommendations to reduce risk and improve control results.

    Primary job responsibilities

    • Assess IT risk and design controls to address that risk through collaboration with IT, internal audit, finance, and other stakeholders
    • Support compliance assessments across a broad range of programs, including Sarbanes-Oxley (SOX), Payment Card Industry Data Security Standard (PCI DSS), Service Organization Control (SOC 1) report, and other assurance programs as needed
    • Collaborate with other team members to identify continuous compliance opportunities
    • Collaborate and coordinate with Information Security, Internal Audit, External Audit, Business, and other IT Compliance teams on assessments and control design recommendations for application and IT infrastructure
    • Demonstrate general awareness of IT process areas including change management, logical access, IT operations, and interfaces for multiple platforms and applications, as well as general awareness of design and operating effectiveness reviews, including executing, reporting, and developing remediation recommendations
    • Support validation of internal and external audit findings and partner with stakeholders on responses, ensuring that remediation plans align with IT
    • Security and Architecture direction

    Required skills

    • 5-8 years of work experience in IT SOX compliance or IT auditing
    • Proactive, strategic approach to problem-solving and controls implementation
    • Knowledge of current technological trends and developments in the area of the Information Systems Internal Audit and Control Association (ISACA), SOX, Public Company Accounting Oversight Board (PCAOB), and auditing standards
    • Solid analytical, interpersonal, and communication skills
    • Demonstrated ability to collaborate with a diverse set of internal and external stakeholders, including senior leaders, business and functional representatives, and vendors and consulting partners
    • Ability to identify project impacting issues and work with control owners and various IT solutions teams to develop and implement solutions
    • Solid collaboration skills and a demonstrated ability to approach technical and business solutions in a consultative manner
    • Industry-related certifications like Certified Information Systems Auditor (CISA), Project Management Professional (PMP), or Certified Internal Auditor (CIA) are a plus
    • Bachelor's degree in accounting, business, IT, or computer science is a plus

    Red Hat is proud to be an equal opportunity workplace and an affirmative action employer. We review applications for employment without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, ancestry, citizenship, age, veteran status, genetic information, physical or mental disability, medical condition, marital status, or any other basis prohibited by law.

    Red Hat does not seek or accept unsolicited resumes or CVs from recruitment agencies. We are not responsible for, and will not pay, any fees, commissions, or any other payment related to unsolicited resumes or CVs except as required in a written contract between Red Hat and the recruitment agency or party requesting payment of a fee.


    Interested in this job?

    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed