IT Compliance Lead System Analyst

ABOUT THE JOB

In this role you will help Outdoors & Security achieve its strategic goals by assisting the IT team in maintaining proper controls and compliance with SOX as well as privacy regulations (GDPR, CCPA).  The Compliance Lead System Analyst will interface with internal and external audit teams as well as IT Operations and Infrastructure teams on all aspects of ITGC and SOX.    They will work closely with the Corporate Privacy counsel as a key member of that counsel and will work closely with the different business teams (e.g. eCommerce, Connected Products, etc.) to ensure privacy compliance.    The individual will maintain the open audit lists and drive the appropriate teams in meeting the approved remediation timelines.

YOUR ROLE:  

• Serve as the primary point of contact for internal and external auditors.
• Perform risk assessments to identify all auditable activities and to evaluate the nature and significance of risk exposures within existing processes, systems, and operations
• Act as liaison between IT process owners, Finance/Accounting, internal and external auditors to coordinate scoping, testing approaches, results, and deficiencies
• Prepare quarterly, interim, and year end testing results presentations, review deficiencies and recommend solutions for remediation
• Assist in the development of IT Control Framework with VP, Information Systems to ensure controls are aligned and appropriate
• Manage follow-up on open audit issues to ensure timely closure of action plans
• Design and manage testing to access risk, evaluate controls, safeguard assets, and analyze IT controls supporting financial reporting and operations processes
• Coordinate and supervise activities related to internal control documentation
• Update existing narratives, as well as develop new narratives and walk-through documentation by working with business owners.
• Maintain the most up to date policies in a centralized place.
• Work with business teams to maintain privacy compliance.  Serve on overall Corporate Privacy council and ensure adoptions of new regulations across the different parts of the business
• Facilitate privacy compliance to global and local legislation (e.g. GDPR, CCPA, etc)
• Maintain appropriate training for self and organization around SOX and Privacy

BASIC QUALIFICATIONS:

• BA/BS Business in Computer Science, Management Information Systems, or appropriate discipline
• 7 years prior experience
• 5-9 years experience leading and managing IT audits or compliance reviews in medium to large corporate environment
• Strong understanding of IT General Controls (Logical Access, Change Management, IT Operations)
• Experience in managing PCI Audits, or compliance projects
• Thorough understanding of all aspects of conducting IT audits including experience evaluating the relevance of control test results or deficiencies
• Experience with Information Security, Privacy, IT audits, Compliance and IT Management Standards: NIST, PCI-DSS, SSAE-16 SOC1 & SOC2, SOX, NIST 800-53, COBIT and FFIEC 

PREFERRED QUALIFICATIONS:

• Strong Analytical Skills
• Ability to multi-task and prioritize efforts
• Strong communication skills both verbal and written.
• Experience with Oracle Cloud Risk Management Module and/or Oracle Financials On-prem systems
• Certified Information System Auditor (CISA)
• Certified Information Privacy Professional (CIPP)
• Experience dealing with CCPA and GDPR privacy regulations

BENEFITS

• All the Insurance coverage you’d expect like medical, dental, vision, life insurance, flexible spending accounts, wellness programs, 401K all effective on your date of hire, and a bonus program plus generous PTO
• Scholarship program for children of employees
• Annual merit and incentive programs
• Charitable gift matching
• Adoption Assistance

EMPLOYEE PERKS

• Culture committed to work-life balance
• Programs in place to support professional development and career growth
• Stock purchase program and charitable gift matching
• Associate Purchase Program on All Fortune Brands Products
• Wear your jeans to work!  

Fortune Brands Doors & Security (Master Lock/Therma-Tru Doors) is an equal opportunity employer. Applicants are considered for positions without regard to race, color, creed, national origin, ancestry, religion, sex, sexual orientation, gender identity or expression, age, mental or physical disability, marital/family/caregiver status, genetic information, military or veteran status, citizenship or any other characteristic protected by federal, state or local low. Fortune Brands Doors & Security also prohibits harassment of applicants or employees based on any of these protected categories.

Candidates for positions with Fortune Brands Doors & Security must be able to present proof of identity and work eligibility post hire. Immigration visa sponsorship is not available for this position and accordingly this position is not appropriate for foreign students who will require sponsorship in the future, including assistance with an Optional Practical Training (OPT) F-1 extension.

To all recruitment agencies:  Fortune Brands Doors & Security does not accept unsolicited agency resumes/CVs. Please do not forward resumes/CVs to our careers email addresses, our employees or any other company location. We are not responsible for any fees related to unsolicited resumes/CVs.