Financial Governance Senior IT Risk Associate
Prague, Prague, Czech Republic
Full Time
Entry Level
The Group Financial Governance Senior IT Risk Associate will be responsible for working with key business groups, control owners, third party consultants, and the clients internal and external auditors to further strengthen their OX framework. They are looking for a collaborative, hands-on individual experienced in driving efficient and effective SOX control frameworks in complex organizations.
Reporting to the Director of Financial Governance, the incumbent of this role will be experienced in IT risk and internal control.
RESPONSIBILITIES:
Control Design Effectiveness Testing
• Conduct project fieldwork at in-scope plant locations, SSC locations, corporate processes in relevant geographies
• Perform control walkthroughs and evaluate control design effectiveness for in-scope
• processes
• Update IT risk and control matrices and process documentation, as needed
• Document IT control design deficiencies and gaps
• Document control design testing results in the Governance Risk and Compliance (GRC) tool
• Develop and agree on control design remediation plans
Control Operating Effectiveness Testing
• Perform SOX control operating effectiveness testing for Round 1 and Round 2 periods for in scope areas such as IT General Controls (ITGCs) and IT Automated Controls (ITACs)
• Perform agreed upon procedures on Information Produced by the Entity (IPE), as applicable, for controls being tested
• Complete operating effectiveness testing and document testing results for each control, including a summary testing matrix and supporting evidence
• Perform quality review of operating effectiveness and IPE testing documentation and incorporate feedback into final deliverables
• Document control operating effectiveness deficiencies within the testing matrix and deliver to Group Financial Governance (GFG) Team for further action
GRC Tool Support
• Make updates to GRC platform and/or content
Reporting
• Conduct post-audit meetings with the control owners to review results and discuss findings
• Partner with business and Group IT on actions to remediate findings
• Draft report to summarize issues for each audit
REQUIREMENTS:
• Bachelor’s degree in IT, Finance or Business, CISA and/or Certified Internal Auditor preferred
• 2+ years’ experience in an internal controls / internal or external audit / IT risk management environment preferably gained in a large global Corporate and/or a Big 4 Accounting firm
• Strong and practical working knowledge of current SOX requirements preferably in the Manufacturing sector
• Demonstrated IT risk and controls knowledge
• End-to-end process minded, experience with data analytics a plus
• Strong working knowledge of Excel and Data Analytics a plus
• SAP knowledge a plus
• Experience with setting up and utilizing various GRC Tools
• Experienced in working in a diverse and multi-cultural / multi-national environment
• Up to 20% travel
Reporting to the Director of Financial Governance, the incumbent of this role will be experienced in IT risk and internal control.
RESPONSIBILITIES:
Control Design Effectiveness Testing
• Conduct project fieldwork at in-scope plant locations, SSC locations, corporate processes in relevant geographies
• Perform control walkthroughs and evaluate control design effectiveness for in-scope
• processes
• Update IT risk and control matrices and process documentation, as needed
• Document IT control design deficiencies and gaps
• Document control design testing results in the Governance Risk and Compliance (GRC) tool
• Develop and agree on control design remediation plans
Control Operating Effectiveness Testing
• Perform SOX control operating effectiveness testing for Round 1 and Round 2 periods for in scope areas such as IT General Controls (ITGCs) and IT Automated Controls (ITACs)
• Perform agreed upon procedures on Information Produced by the Entity (IPE), as applicable, for controls being tested
• Complete operating effectiveness testing and document testing results for each control, including a summary testing matrix and supporting evidence
• Perform quality review of operating effectiveness and IPE testing documentation and incorporate feedback into final deliverables
• Document control operating effectiveness deficiencies within the testing matrix and deliver to Group Financial Governance (GFG) Team for further action
GRC Tool Support
• Make updates to GRC platform and/or content
Reporting
• Conduct post-audit meetings with the control owners to review results and discuss findings
• Partner with business and Group IT on actions to remediate findings
• Draft report to summarize issues for each audit
REQUIREMENTS:
• Bachelor’s degree in IT, Finance or Business, CISA and/or Certified Internal Auditor preferred
• 2+ years’ experience in an internal controls / internal or external audit / IT risk management environment preferably gained in a large global Corporate and/or a Big 4 Accounting firm
• Strong and practical working knowledge of current SOX requirements preferably in the Manufacturing sector
• Demonstrated IT risk and controls knowledge
• End-to-end process minded, experience with data analytics a plus
• Strong working knowledge of Excel and Data Analytics a plus
• SAP knowledge a plus
• Experience with setting up and utilizing various GRC Tools
• Experienced in working in a diverse and multi-cultural / multi-national environment
• Up to 20% travel
Apply for this position
Required*