Senior Analyst Information Systems Audit

AsanIT Senior Analyst youare responsible forleading reviewing remediationandsupportauditsrelatedactivitiesto Sarbanes-Oxley (SOX) Privilege access review (PAR)Cybersecurity Maturity Model Certification (CMMC)Level1 and2.

You will play a crucial role planning executing and reporting on audits related to Sarbanes-Oxley (SOX) compliance and Cybersecurity Maturity Model Certification (CMMC) requirements to ensure our organization maintains robust internal controls over financial reporting and meets Department of Defense (DoD) cybersecurity requirements for handling Controlled Unclassified Information (CUI).

The scope of work includes working withcomplianceteam and preparing monthly quarterly SOXreportfor all the applications undercommercialtower.You will also be workingand collaboratingwithinternal Cyber security Infrastructure and Applicationteamsto take the input and guidance regarding CMMC2and othercertifications.

The ideal candidate will have a strong background in IT audit cybersecurity frameworks and regulatory compliance within highly regulated industries such as finance defense or healthcare.

In additionyou will be working withteamon license compliance for various applicationsthis teamsupports.A candidate should have experience working with SaaS vendorsas most of the applications that we currently deal with on licenseconsumptionsare SaaS vendors.

What You Will Do:

• Perform activities by following Strykerscomplianceframework and processes.

• Plan execute and report on SOXaudits focusing on IT General Controls (ITGCs) and application controls.

• Evaluate and test internal controlsidentifygaps and recommend remediation strategies.

• Collaborate with cross-functional teams (IT finance cybersecurity legal) to ensure compliance andtimelyremediation.

• Maintain audit documentation risk assessments andevidencerepositories.

• Support external auditors and DoD assessors during formal evaluations.

• Monitor regulatory changes and update audit programs accordingly.

• Provide training and guidance on SOX and CMMC requirements toconcerned stakeholders

What You Need:

• Bachelors Degree or equivalent from an accredited university;bachelorsdegree in the areas of Information Systems Cybersecurity or related field of study preferred.

• 4 to 7years of experience in SOX IT audits license managementcybersecuritycompliance.

• License management for IT applications.

• Strong understanding ofPARSOX CMMC Riskmanagementand internal control testing.

• Demonstrated ability to lead and collaborate with cross-functional teamsandcrossinternationalgeographicalregions.