Lead IT Controls Analyst - Warwickshire, United Kingdom - Pontoon

Pontoon

Verified Company

Warwickshire, United Kingdom

1 week ago

Posted by:

Tom O´Connor

beBee Recruiter

Description

Lead IT Controls Analyst

Utilities

Hybrid / Warwick

Permanent

£45,000 - £50,000 per annum + benefits

Job Purpose:

The purpose of this role is to support in the planning and delivery of IT SOx control testing in addition to working collaboratively with IS Lead Auditors to support the delivery of individual IS audits.

Through these responsibilities, the role will identifycontrol deficiencies to ensure compliance with regulations, internal controls, policies and procedures and make recommendations which result in improvement to the internal control structure.

Accountabilities:

Support the planning and delivery of IT SOx testing through the completion of allocated controls testing. Testing will be performed to the internal testing methodology and be documented within Archer GRC.
Support IS Lead Auditors in the planning and delivery of IS Audit activities. The IS Audit Senior Analyst will work collaboratively in the development of audit test procedures, completion of the audit planning process and their execution, with the IS LeadAuditor retaining overall responsibility for audit delivery.
Engage with auditees and control owners regularly to track progress against audit actions and controls in remediation. Updates on remediation progress will documented and recorded in evidence.
Review evidence to validate the delivery of audit actions and control remediation. Details will be documented and recorded in Archer.
Build and maintain relationships with key stakeholders within IT relevant to the delivery of IT controls testing.
Develop and execute clearly written test plans based on control objectives in a repeatable manner.
Ensure compliance with established internal control procedures by examining records, reports, operating practices, and documentation.
Verify the design and effectiveness of controls to secure information system assets, including people processes and technologies.
Complete work papers by documenting IT controls testing and findings clearly articulating test methodology and steps taken. This will be documented in Archer GRC.
Prepare regular IT Controls testing status reports for internal IS Audit management.
Support the delivery of ad hoc Corporate Audit project work, working as part of a larger team to complete discreet activities and tasks.
Maintain professional and technical knowledge by attending educational workshops; reviewing professional publications; establishing personal networks; participating in professional societies.

Knowledge and Experience Required:

Good IT controls testing experience required, with some IS audit experience preferable.
Some knowledge of internal audit practices and methodologies.
A demonstrable track record of developing successful relationships across the business.
Good knowledge of and experience of business, particularly information systems related, processes, ideally within the utility sector
A focus on continued improvement and achieving high standards

Behavioural Competencies and Leadership Qualities:

Must be selfmotivated and have the ability to handle multiple priorities and to work under pressure.
Proactive and insightful in looking to deliver continuous improvement.
Competent decision making, problem solving and analytical skills to analyse large data sets as part of IT controls testing and IS audit activity.
Belief in own judgement and professional capability when communicating issues that have been identified.
Must be cautious and prudent guardian of sensitive and confidential information.
Strong communication, interpersonal and influencing skills to successfully manage controls testing and audit assignments and reach agreement on required changes.

Skills/Qualifications:

Bachelor's degree in Business Administration, Computer Sciences or related areas
IT controls testing or IS Audit Experience.
Good knowledge and understanding of audit legislation, internal control frameworks, audit systems and risks
Good knowledge of Sarbanes-Oxley requirements.
Certified Information Systems Auditor qualification is preferred