Sr. Analyst, IT Compliance

Job Description Summary

Quaker Houghton’s goal is to apply global IT industry best practices, enabling Quaker Houghton to instill the business with new insights regarding global data, business risk, compliance, and information security.

Job Description

The Senior Analyst - Risk and IT Compliance is primarily responsible for the SOX ITGC compliance program and supporting ongoing Risk and IT Compliance efforts. The position will work closely with other members of the Risk and IT Compliance team as well as the larger IT department, Finance-Compliance team and both internal and external audit teams. The ideal candidate is self-motivated, well organized, has the proven ability to develop solutions in response to complex audit and compliance related matters and apply precedents. Additionally, the candidate has prior experience driving projects and compliance related activities associated with Internal Control over Financial Reporting (ICFR). The ideal candidate should also have a proven ability exercising sound judgement and providing consultative guidance to stakeholders associated with IT compliance related matters. Role will receive exposure to upper management throughout a global and growing organization. Position reports to the Manager, Risk and IT Compliance. Excellent opportunity for someone looking to transition out of consulting / public accounting and into corporate Risk and IT Compliance.

Accountabilities:

• Key liaison with Internal & External Audit partners
• Facilitation and project management of SOX ITGC document requests; rationalize and challenge document requests according to precedents and regulatory requirements
• Manage document and project related request tracking and follow up with members of the organization; ensure timely evidence/documentation submission in support of audit activities and special projects; report metrics to stakeholders
• Updating, rationalizing, and maintaining existing ITGC process documentation; act as trusted advisor for control oriented consultation to stakeholders
• Drafting, rationalizing, and maintaining narratives and process flows for in-scope ITGCs, systems, and processes
• Monitoring of key SOX control activities; report metrics to stakeholders
• Execution of key SOX control activities
• Lead drafting of IT policies and/or updates to existing policies; rationalizing current policies to ensure relevancy and identity areas for optimization/standardization
• Assisting with IT Compliance related communications to key internal stakeholders
• Assisting with or lead other non-SOX related IT Compliance initiatives as required
• Responsible for timely completion of work as assigned; providing regular status updates over assigned responsibilities; report metrics to stakeholders
• Performing initial quality reviews of staff or consultant related deliverables connected to audit and special project related activities; provide coaching to stakeholders and identify areas for documentation and process level improvements
• Assist with special projects related to IT compliance and governance related initiatives

Experience and Education:

• 2+ years of experience in IT audit/compliance
  • SOX 404 and SOC1 controls background required
  • Big 4 IT audit experience highly recommended
• Bachelor’s degree (BS) in accounting or information systems preferred
• CISA certification - nice to have
• Internal
  • Senior Manager IT Risk and Compliance – Team Lead
  • Manager IT Risk and Compliance – Hiring Manager
  • Senior Analyst IT Risk and Compliance – experienced colleague
  • IT/business process leads (various) – control owners
• External
• PwC – external auditors
• EY – internal auditors/co-source
• Organizational relationships