Inforeem Job Portal

IT Compliance Analyst - DC

Location: Washington, DC
Date Posted: 02-14-2018
or
Compliance Analyst
Washington DC


• Assist in the development and implementation of sustainable compliance framework and processes in the WBG to meet IT policies, business requirements, and applicable legal and regulatory requirements
• Conduct IT Technology and process audits as well as compliance assessments based on COBIT, ISO 27001 & ISO 20000 frameworks.
• Assist in controls implementation, including documentation of processes and procedures to address Internal Controls over Financial Reporting (ICFR) requirements for the IT General Computer Controls (ITGC) for Information Security, Change Management, and IT Operations areas
• Independently assess the design effectiveness of IT General Computer Controls for Information Security, Change Management, and IT Operations
• Develop test plans and detailed test procedures to assess operating effectiveness of the IT General Computer Controls for Information Security, Change Management, and IT Operations
• Assess compliance against technical standards for various platforms and technologies.
• Collect, evaluate, and maintain data to ensure that required management reporting is completed as needed (this also includes inputting appropriate data into systems such as RSAM & Bwise)
• Assist in ISO 27001 & ISO 20000 certification efforts, including risk assessments, internal compliance assessments, and program management
• Assist in monitoring open audit items form audits, such as WBG internal audit department (IAD) IT audits, external financial audits on Internal Controls over Financial Reporting (ICFR), and ISO 27001 & ISO 20000 certification audits to ensure execution of remedial activities defined in the agreed action plans and risk treatment plans
• Perform other duties in the compliance work program, as assigned
 
Educational Qualifications and Experience:
• Education: MA/MS (In Computer Science, Information Systems or a related technical field or equivalent combination of education and experience. BS/BA is minimum education requirement.)
• Role Specific Experience: Minimum 5+ years’ experience working in an information security, information technology or compliance related field;
• Experience in conducting design and operating effectiveness testing for the ITGCs
• Demonstrated experience in implementing compliance frameworks for financial services organization or organizations with similar information security needs and requirements
• Experience in conducting assessments, designing processes, and implementing SOX controls for the IT General Computer Controls (ITGCs) areas for the IT General Computer Controls (ITGC) for Information Security, Change Management, and IT Operations
• Experience in auditing platforms (UNIX, Windows) and databases (Oracle);
 
 
Certification Requirements:
• Industry certifications highly preferred, including but not limited to Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), and Information Systems Security Management Professional (ISSMP)
 
Required Skills/Abilities:
• Familiarity and understanding of broad range of IT hardware and software products
• Good understanding of industry standards and regulations including COBIT, COSO, and SOX
• Good knowledge and demonstrated work experience of the use of ISO 27001 control framework and Information Security Management System (ISMS) implementation
• Demonstrated knowledge of IT and security controls for network, database, application and operating systems. Strong knowledge and work experience with logical access controls
• Knowledge of ERP and financial system including but not limited to SAP, PeopleSoft and Summit, Enterprise GRC systems such as BWise and RSAM
• Self-motivated with the ability to work independently and within groups with minimal supervision
• Excellent written and verbal communication skills, presentation, and problem solving skills, and ability to interact well with peers and internal customers
• Highest ethical standards
 
 
this job portal is powered by CATS