Senior IT Internal Controls Analyst

Contract Type
This position is archived.
This position is archived.
Job description

As a Senior IT Internal Control Analyst, you will lead, support and perform internal information security control audits and/or reviews for service lines to ensure adherence with established policies & procedures, business practices, company guidelines and support the continuous improvement process. This position will support the Compliance program, which is COSO based, in the most efficient and effective manner possible by working within the established calendar of activities, leading and performing assigned testing, risk analytics and documenting test results appropriately and participating in discussions with Management regarding testing results. The role will also focus on the monitoring program for SOC1 and SOC2 activities and internal controls reviews requested by Asset Services and Global Occupier Services Management. You will also support both the regional and global teams with the provision and analysis of insightful, consistent and quality information security data obtained from the wider team, IT partners, third party suppliers and Business Units across the Company.

Key Responsibilities:

  • Leading daily, weekly, and monthly testing related to internal SOC1/SOC2 controls, information security controls, minimum standards and other controls and processes as necessary to evaluate compliance with internal company policies and guidelines.
  • Leading and managing junior control testers ensuring IT control testing is performed according to set deadlines and established quality.
  • Review control testing performed by junior analysts, evaluate and report gaps to management, recommend mitigation actions to control gaps identified during testing.
  • Manage simultaneous audits as assigned and complete required audits within the scheduled time frame
  • Maintain documentation of audit procedures, evidences and review activities
  • Participate in yearly external compliance audits as a quality assurance function between the business and external auditors
  • Perform analytical reviews of audit documents and preparing the documentation supporting audit opinions
  • Utilizing specialized audit software to develop audit work papers, perform tracking and forecasting for audit engagement

Knowledge and Experience:

  • Degree or equivalent work experience in computer science, information systems, or related field
  • Two to three years of relevant experience in risk management, e.g., technology risks, internal audit, service organization control reporting, compliance, regulatory risks, etc.
  • Experience in professional services, financial institution, real estate environment, functional experience in internal controls and IT risk management.
  • Experience with leading audits with 3+ applications in scope
  • Knowledge of Windows and Unix operating systems, Oracle and SQL databases. Knowledge of cloud computing is a plus.
  • Good understanding of the regulatory landscape), internal control frameworks (COSO, COBIT) and service organization control certification standards (SOC 1, SOC 2, SOC 2+).
  • Attention to detail and a track record of delivering high quality reports of accurately presented data in a meaningful and appropriate way
  • Exceptional interpersonal skills to successfully communicate with stakeholders by phone, in documentation, via email, and in meetings and workshops.
  • Able to manage own time effectively and show judgement on prioritising tasks, working on activities concurrently when required and demonstrate flexibility to changing requirements, often at short notice
  • Excellent oral and written communication skills in English both oral and written competency
  • Big4 working experience is a plus
  • Professional designation is a plus (CISA, CIA)
  • Competent in Microsoft Excel, PowerPoint and SharePoint

In return company offers the prospect of working with the leading player in its industry that matches your ambitions to grow and succeed along with a highly motivating salary package related to your ability.

Other notes
For more related job opportunities visit
This position is archived.
This position is archived.