IT Compliance Analyst GENERAL SUMMARY :
The IT SOX Compliance Analyst will be a member of the Global IT Compliance organization in will be based on Sao Paulo. The ideal candidate will have a thorough understanding of IT Internal Controls more specifically IT Control Testing, auditing and remediation.
The candidate will also participate in multiple key initiatives to enhance IT Compliance within the organization, such as IT Control Monitoring, IT Control Automation, IT Compliance (SOX, FERPA, PCI;
Privacy Laws) and IT projects.
ESSENTIAL DUTIES AND RESPONSIBILITIES :
Participate in IT SOX planning, including risk assessments, in-scope systems analysis, and coordination of the testing approach.
Perform IT SOX walkthroughs to identify potential changes and control gaps and conduct IT SOX controls testing to evaluate the design and operating effectiveness of controls in accordance with established procedures.
Provide input to periodic progress reporting including status of overall testing progress, open control deficiencies, and assist with escalation when deficiencies are not remediated timely.
Work with SOX leadership to communicate, both written and verbal, to IT application owners the results of testing the effectiveness of the ITGC controls, and remediate any exceptions
Maintain quality of SOX documentation such as global risk and control matrices, walkthroughs, narratives, master testing and control deficiency tracking document and develop workpapers that meet professional requirements, including appropriate documentation of controls testing and conclusions and prepare and present reports of testing status, results and exceptions.
Stay abreast of changes to and best practices in SOX compliance and IT internal controls overall. Bring such perspective to Laureate to continuously improve our compliance effort.
Coordinate with IT personnel across the organization to implement required controls and ensure that process is followed to maintain appropriate evidence as required by the specific control.
Responsible for working with process owners and external auditors to facilitate the execution of management's annual internal controls assessment in accordance with Sarbanes Oxley Act as well as other IT related audits
Support the senior manager and the team in analytical review of control gaps and escalate possible critical issues to IT and team
Identify risk and control gaps and partner with the IT department to ensure internal control guidelines exist in Laureate systems and applications to ensure SOX compliance
Support in the preparation and / or review of reports that are requested for the reporting of SOX and IT Internal Audit related information
Responsible for tracking and monitoring IT remediation efforts
Help ensure IT General Controls are considered throughout the new system implementation projects; review documentation for new IT processes that impact SOX compliance, as required
Bachelor’s degree in technology, business or accounting, graduate degree preferred
Minimum of 2-3 years of experience in IT and / or auditing work experience.
Minimum of 2 years of experience in SOX IT Compliance.
Experience in developing and performing control testing, audit and remediation
Excellent written, verbal and communication skills.
CISA, CISM or equivalent professional certification desirable
Advanced proficiency in English is also desirable
BUSINESS COMPETENCIES :
IT Control Testing
Excellent Oral and Written Communications Skills
Sense of Urgency
Good execution skills
Detail orientation, and the ability to record, organize, and communicate detail