As a Security & Compliance Assessments Specialist at Aon, you will play a crucial role in evaluating and validating control evidence related to both on-prem and cloud-based infrastructure, ensuring compliance with various regulatory standards. Your day-to-day responsibilities will involve conducting walkthrough meetings, performing testing on controls, and advising on remediation for any identified deficiencies, all while collaborating with a diverse global team.
responsibilities :
Participate in walkthrough meetings with control owners
Evaluate provided control evidence, validating the evidence for completeness and accuracy, IPE requirements
Determine testing conclusions for design and operating effectiveness
Perform testing on controls related to on prem and cloud-based infrastructure
Adjust testing results based on reviewer feedback
Advise on suggested remediation for control deficiencies
Discuss control deficiencies with control owners, being able to clearly articulate the gap and suggest remediation activities
Support internal audits, regulatory audits, and client requests as needed
Support additional activities related to our Governance, Risk and Compliance (GRC) program
requirements-expected :
Any bachelor’s degree with preference to a technical or business degree
2 to 4 years of experience in ITGC execution, testing, internal audit, or external audit functions
Experience completing testing, status updates, and reporting using a GRC tool
Ability to independently manage workload to achieve agreed upon milestones
Advanced Excel proficiency (ability to use macros, advanced formulas, pivot tables, etc)
Feel comfortable speaking English in group calls of 10-20 people
Experience performing control testing for any of the following regulations: SOX, PCI, MAS, HIPAA, NYDFS, FCA, or other regulatory requirements
Desire to work on a global team with the possibility of working adjusted hours to accommodate global time zones
