As a member of the Cyber Security group, the IT Risk and Compliance Associate collaborates with IT, Internal Audit and various other departments to drive effective risk and control management. The associate assists with the evaluation and rationalization of IT controls in the context of IT SOX audits, PCI audits and Cyber compliance audits; and performs enterprise cyber and technology risk assessments including third-party Cyber risk assessments.
Evaluates IT controls to reduce the impact of internal and external IT audits.
Controls rationalization to simplify the IT control environment.
Evaluates/interprets SOX IT Audit and PCI DSS requirements and provides guidance to process and control owners on the objective / intent of the requirements.
Assists project teams to evaluate IT risk and compliance considerations for projects.
Assists with enterprise cyber and technology risk assessments.
Helps perform third-party cyber risk assessments.
Collaborates with business units to deliver enterprise risk assessment results; and identifies solutions to minimize risk exposure.
Performs other job-related duties as assigned or apparent.
Bachelor’s Degree in Information Security, Accounting and Information Systems, IT Risk Management.
Big 4 experience in the IT Audit and Advisory domain. (Preferred)
Experience with GRC tools and policy / procedure development.
Certifications: Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), GIAC Critical Controls Certification (GCCC), or GIAC Security Essentials (GSEC).
Intermediate to advanced proficiency in the use of Microsoft Office products, including Word, Excel and PowerPoint.
Strong technical, analytical and problem-solving skills.
Strong communication skills to effectively interact with internal and external partners on all levels to resolve issues and provide solutions in a timely manner.
Minimum of 1-2 years of experience in IT Audit, IT Risk Management or IT Compliance.
Prior exposure to, and experience with, SOX IT and PCI DSS audits.
The statements used herein are intended to describe the general nature and level of the work being performed by an employee in this position and are not intended to be construed as an exhaustive list of responsibilities, duties and skills required by an incumbent so classified. Furthermore, they do not establish a contract for employment and are subject to change at the discretion of the Company.
Telecommuting is allowed.
Internal Number: R-079015
About Republic Services
Why choose Republic?
Joining Republic isn’t just about taking on a new job, it’s about making a commitment to create a more sustainable world together. Our people provide an essential service, serving and impacting customers, neighborhoods, and communities everywhere.
As a company, we are proud of our values and encourage those who share in our aspirations to join our team:
We protect our colleagues and communities through safe practices everywhere, every day.
We are committed to serving our customers and communities by going above and beyond to exceed expectations.
We take action to improve neighborhoods and communities by being environmentally responsible and creating a more sustainable world.
We are driven to deliver results in the right way.
We encourage a human centered culture that honors the unique potential and dignity of every person.
Republic Services is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, sexual orientation, gender identity or expression, national origin, age, disability, protected veteran status, genetic information, or any other characteristic prot...ected by applicable law.
The statements used herein are intended to describe the general nature and level of the work being performed by an employee in this position, and are not intended to be construed as an exhaustive list of responsibilities, duties and skills required by an incumbent so classified. Furthermore, they do not establish a contract for employment and are subject to change at the discretion of the Company.
BACK TO TOP
ISACA Career Centre is Just One of the Benefits.
Discover what else ISACA has to offer!
The job you are trying to reach from was originally posted at ISACA Career Centre.