The IT Assurance Analyst is a newly created role and will work closely with the Assurance Manager and the risk domain leads for Information Technology and Cyber Security to further enhance the second line.
The purpose of this role is to support the Assurance Manager in monitoring compliance with the policies and the controls framework, coordinating the 1st line Electronic Internal Controls Questionnaire (eICQ) and Month end/Quarterly Control self-assessments, and providing support in control testing in line with the framework and identifying issues and ensuring that they are closed satisfactorily within the set deadlines.
We are looking for an action-oriented problem solver with accounting qualifications and a thorough understanding of financial control frameworks who can make decisions and seize opportunities in a timely manner and work resiliently even in challenging circumstances.
In this role, you must be able to flex your style and approach to a variety of different people and situations, establish credentials and authority with management teams and quickly develop strong working relationships with key stakeholders across the group.
responsibilities :
Support the Assurance Manager in facilitating the planning and managing the delivery of the first line risk, assurance and controls testing
Plan and drive proactive risk and controls management, including supporting in identification of control weaknesses, root cause analysis and control failings and ensure action plans are in place to mitigate and resolve the identified issues
Monitor the remediation of issues along with the first line control owners and supporting them in timely actions
Produce regular reporting on the control environment and co-ordinate the evidence required.
Support in carrying out control assessments across the Information Technology and Cyber Security risk domain to provide assurance on the conformance to policies and control and Information security management frameworks. This will include performing Tier based audits, Electronic Internal Controls Questionnaire (eICQ) and Month end/ Quarterly control self-assessments validation.
Identify and communicate internal control risk through collection, analysis and review of internal control evidence.
Work along with the Assurance Manager and Risk Domain Leads to implement and monitor remediation efforts that result from internal control assessment, ensuring the effective implementation of corrective actions.
Track exceptions/issues highlighted during the reviews to ensure they are closed satisfactorily within the set time frames.
Support the Assurance Manager to report risk events, policy deviations, risk exceptions, and engaging appropriate stakeholders on timely remedial actions; escalating key risk situations that pose significant risk.
Support the Information Technology & Cyber Security Risk domain leads in the deployment and review of policies, procedures, business process, design and implementation of controls and system implementation ensuring that proper controls are embedded.
Support the Assurance Manager in training the Risk domain leads and Control owners on concepts related to risks, controls and specific operating processes
requirements-expected :
Bachelor’s degree in management information systems/information technology, Computer Science or Business (Accounting, Finance, or related)
Minimum 2-3 years’ experience in IT Internal Controls eg: SOX
CISA, CISSP preferred
Good understanding of core IT processes and knowledge of regulatory and statutory requirements and market issues relevant to the IT landscape
Experience of applying quality assurance and quality control methodologies
Experience of controls assurance and testing
Strong written and verbal communication skills
Experience of design and execute testing to validate application system controls which may require data analysis, code inspection and re-performance of system processes.
Experience of analysing the design of controls in the context of information technology controls such as security, availability and performance and their impact on the business.
offered :
Unique opportunity of being part of Global Assurance Team based in London and Kuala Lumpur
Hybrid working model (2 days from home + 3 days from the office) after induction period
Competitive benefits package (medical care package for attractive fee, life insurance – 1 PLN and sport card – 1 PLN, lunch cards, additional day off for birthday)
Bonus scheme
Excellent office location around Rondo Daszyńskiego