Heinz
Location
Ahmedabad | India
Job description
The Kraft Heinz Company is seeking an Analyst I - Internal Controls - IT to work with teams across the company to identify and make recommendations on information risk and control optimization. The Analyst I - Internal Controls - IT position involves defining and conducting assessments and partnering with the business on information and systems risk and compliance. We are seeking individuals who pay attention to detail and love finding creative and thoughtful solutions to a variety of compliance challenges.
Technical Competence :
Conduct compliance assessments by understanding business objectives, structure, policies and procedures, internal controls, and external regulations
Document systems, processes and controls using narratives, flow charts, data flow diagrams, etc.
Work with business owners to document new and existing business processes, process narratives, and documentation of security controls.
Work with control owners to test security controls and ensure testability of existing controls and new security controls including ITGC testing of Change Management, Logical Security, and IT Operations.
Aid in development and maintenance of compliance metrics by providing visibility, operating effectiveness of controls, process stability, remediation status and action plan, insight, and analysis of the effectiveness of the overall IT compliance program.
Provide performance reporting related to information security compliance risk and controls effectiveness to key stakeholders.
Assist in the review of the SaaS applications SOC 1 reports and follow-up actions on complementary User Entity Controls or other compensating controls
Work closely with internal business partners in the development and implementation of a segregation of duties controls framework
Completes internal controls testing work papers by documenting audit tests and findings
Perform risk assessment using various industry standard frameworks
Assess the effectiveness of internal controls over key IT risk
Identify and recommend business process changes resulting in strengthened internal controls
Collaborate with control owners to implement process changes and track to completion
Advise and collaborate on projects by providing IT controls expertise and considerations
Understand and communicate the downstream impact on the business of control deficiencies
Qualifications:
B.A. , B.Com. or B.E degree in Accounting or Finance (MBA/CA) or I T
CISA or equivalent certification in IT Risk
2-3 years of experience in IT audit, preferably with a Big 4 firm or multinational company. Flavor of process audits is preferred.
K nowledge of IT auditing techniques and IT control processes (change management, systems development life cycle, information security, IT operations, etc.)
IT Risk Management requirements and frameworks, including SOX, COBIT, and COSO, (more than just SOX experience)
Strong influencing and communication skills
Ability to work independently, manage multiple priorities concurrently, and complete projects on schedule with a high degree of accuracy
Required to work shifts to overlap with US time zones to conduct client meetings and as job duties demand.
Strong project management, organizational and planning skills, and the ability to manage multiple projects and deadlines efficiently.
Job tags
Salary