SOX Analyst bei Chubbfiresecurity

Searching for highly motivated candidate and a results-oriented analyst to join the SOX ITGC team as a SOX Analyst, focusing on the execution of the global SOX Compliance program for IT.

The position, which reports to the Head of Risk & Controls Lead will provide guidance to internal teams such as Control Owners, external customers and vendors where applicable.  This position will be part of an integrated team that believes at collaboration, flexibility, resourcefulness and attention to detail are keys to success.

Responsibilities:

The SOX Analyst is responsible for the following activities and functions:

• Contribute to the ongoing maintenance of the IT SOX Risk and Controls Matrix.
• Assist Control Owners with any on-going remediation plans throughout the year to ensure testing is carried out and tracked without delay to the overall SOX program.
• Confirm and ensure operational duties for the SOX program is managed daily.
• Support in tracking of controls in Chubb, as defined, including testing, evidence gathering and audit as well as implementation for new systems and projects.
• Collaborate with IT partners to identify areas where control enhancements and/or documentation improvements are needed.
• Support the team-oriented culture of the Internal Controls and SOX department. Oversee and review work completed by Control Owners testers, contractors and internal teams.
• Pro-actively research and assess deficiencies identified and work with management to identify an appropriate solution. Advise Control Owners on solutions to close any remediation gaps.
• Follow-up on remediation activities to verify appropriate resolution to ensure open security gaps are closed quickly.
• Frequent collaboration with internal/external auditors and serves as a liaison between external audit and IT.
• Engage with external vendors to ensure SOC reports are delivered on time. Review of SOC report evaluations to ensure exceptions are appropriately addressed and that appropriate complementary controls are in place and operating effectively.
• Collaborate with the Business Process team to assess any gaps found in IT to ensure compensating/mitigating controls are identified in the Business Process to limit security exposures.
• Support with the development and delivery of the annual and ongoing IT compliance trainings to key control stakeholders in enhance the SOX program.
• On an ongoing basis, support the control operators/owners on remediation activities throughout the year to ensure correct controls are operated to limit any identified control gaps.
• Work in partnership with the Business Process team to ensure team collaboration with IT especially where gaps have been identified within the IT controls

Profile

The ideal candidate will have hands-on experience identifying and evaluating the design of risk and controls and assesses the effectiveness of controls on critical systems in a dynamic/complex environment.  

In addition, the candidate will be detail-oriented and have the skills necessary to influence people in a fast-changing environment.

Desirable Experience:

Technical skills Strong technical insight, practical knowledge and capability in Sarbanes-Oxley compliance including;

• Experience of ERP systems such as JDE or SAP and associated GRC tool
• Strong technical and functional knowledge of IT controls including Change Management, User Access and IT Operations including experience in a JDE/SAP environment
• Experience of understanding and assessing third party service provider risk and control, including understanding SOC reports control

Additional Experience:

• Experience in managing one or more key services in a security environment.
• Completion of a recognised Information Security certification, such as CISSP or CISM.

Personal Qualities and Behaviours:

We are looking for a SOX analyst who is organised, methodical and happy to deal with several key activities at the same time in a complex, fast environment.  The ability to communicate risk and controls and support Control Owners with remediation is a must and someone who will always seek to try and improve the SOX function for the future.

Additional Information

About Us, Our Culture & What We Can Offer You

Established over 200 years ago, Chubb Fire & Security are a global business driven by keeping people and the world safe.  We provide essential systems, equipment and services, from digital CCTV surveillance and intruder alarms, to fire detection and suppression systems. Offering a full range of innovative products and services to a broad range of customers, from local independent business, to many of the FTSE 100 companies

We believe we offer a unique working culture, where you are as important to us as our customers, and we want you to feel that everyday. We are proud to offer extensive training to all of our new Advisors, fully supporting, and enabling you to thrive in your new role and beyond, with ongoing career development opportunities throughout your career journey with us.

#BR-CB