Pacifica Continental
Senior IT Risk Associate
Prague, Czech Republic - Full Time
Senior IT Risk Associate
Prague, Czechia
Prague, Czechia
Our client is a global packaging company with growing operations in Europe, incl. operations in the in Germany, France, Spain, Poland, Hungary and Czech Republic.
As a result of their great expansion, they are currently looking for a Senior IT Risk Associate to join the Financial Governance team in Prague.
About The Role
The Group Financial Governance Senior IT Risk Associate will be responsible for working with key business groups, control owners, third party consultants, and internal and external auditors to further strengthen the company SOX framework. They are looking for a collaborative, hands-on individual experienced in driving efficient and effective SOX control frameworks in complex organizations. Reporting to the Director of Financial Governance, the incumbent of this role will be experienced in IT risk and internal control.
Key Job Accountabilities
Control Design Effectiveness Testing
- Conduct project fieldwork at in-scope plant locations, SSC locations, corporate processes in relevant geographies
- Perform control walkthroughs and evaluate control design effectiveness for in-scope
- processes
- Update IT risk and control matrices and process documentation, as needed
- Document IT control design deficiencies and gaps
- Document control design testing results in the Governance Risk and Compliance (GRC) tool
- Develop and agree on control design remediation plans
Control Operating Effectiveness Testing
- Perform SOX control operating effectiveness testing for Round 1 and Round 2 periods for in scope areas such as IT General Controls (ITGCs) and IT Automated Controls (ITACs)
- Perform agreed upon procedures on Information Produced by the Entity (IPE), as applicable, for controls being tested
- Complete operating effectiveness testing and document testing results for each control, including a summary testing matrix and supporting evidence
- Perform quality review of operating effectiveness and IPE testing documentation and incorporate feedback into final deliverables
- Document control operating effectiveness deficiencies within the testing matrix and deliver to Group Financial Governance (GFG) Team for further action
GRC Tool Support
- Make updates to company's GRC platform and/or content
Reporting
- Conduct post-audit meetings with the control owners to review results and discuss findings
- Partner with business and Group IT on actions to remediate findings
- Draft report to summarize issues for each audit
Qualifications/Requirements
- Bachelor’s degree in IT, Finance or Business, CISA and/or Certified Internal Auditor preferred
- Significant experience in an internal controls / internal or external audit / IT risk management environment preferably gained in a large global Corporate and/or a Big 4 Accounting firm
- Strong and practical working knowledge of current SOX requirements preferably in the Manufacturing sector
- Demonstrated IT risk and controls knowledge
- End-to-end process minded, experience with data analytics a plus
- Strong working knowledge of Excel and Data Analytics a plus
- SAP knowledge a plus
- Experience with setting up and utilizing various GRC Tools
- Experienced in working in a diverse and multi-cultural / multi-national environment
This is a great opportunity for a collaborative, hands-on individual experienced in driving efficient and effective SOX control frameworks in complex organizations.
If you want to be part of an ambitious organization and highly motivated team, with lots of opportunities for personal and professional growth, this opportunity is for you!
Your contribution will make a direct impact on their day-to-day operations.
Location: Prague (Business Center) – Hybrid model (3x a week at the office).
