IT Audit / Risk Control Position Available In Allegheny, Pennsylvania
Tallo's Job Summary: This job listing in Allegheny - PA has been recently added. Tallo will add a summary here for this job shortly.
Company:
System One
Salary:
—
Job Description
Job Description:
Job Title:
IT Audit /
Risk Control Location:
Pittsburgh,Pennsylvania Type:
Direct Hire no visa sponsorship, no candidateswith temporary work authorizations, no recent college graduates Forimmediate consideration, please connect with me on LinkedIn athttps://www.linkedin.com/in/dpotapenko and then email your resume,work authorization status, current location, availability, andcompensation expectations directly to denis.potapenko@systemone.com
- make sure to include the exact job title and job location in youremail message.
IT Audit & Assurance :
- Conduct risk-based auditsover IT infrastructure, cybersecurity, application controls, andthird-party services.
- Evaluate the design and effectiveness of ITGeneral Controls (ITGCs), including access management, changemanagement, and backup/recovery processes.
- Develop and executeaudit programs aligned with
NIST, FFIEC, ISO
27001, SOX, and COSOframeworks.
Risk Governance :
- Establish and manage riskgovernance frameworks to monitor emerging technology risks.
- Leadrisk and control self-assessments (RCSAs) across technology andbusiness units.
- Interface with board-level committees andexecutive leadership on key risk indicators (KRIs) and riskappetite reporting.
Enterprise Risk Management (ERM)
Audits :
- Perform ERM audits evaluating strategic, operational, regulatory,and reputational risks.
- Support enterprise-level risk assessmentsand annual audit planning.
- Recommend actionable enhancements toenterprise-wide risk policies, risk taxonomy, and reportingstandards.
Internal Controls & Compliance :
- Design, test, andvalidate internal controls over financial reporting (SOX 404compliance).
- Review policy and procedure documentation to ensurealignment with corporate governance standards.
- Lead remediationefforts for control deficiencies and audit findings.
Third-PartyRisk Management :
- Assess third-party vendors’ security controls,compliance standards, and operational resilience.
- Conduct duediligence reviews
- KY3P, Archer GRC, ServiceNow GRC For immediateconsideration, please connect with me on LinkedIn athttps://www.linkedin.com/in/dpotapenko and then email your resume,work authorization status, current location, availability, andcompensation expectations directly to denis.potapenko@systemone.com
- make sure to include the exact job title and job location in youremail message.
M1 LI-DP1
.
Ref:
404-IT Pittsburgh
