Previous Job
Sr. IT Internal Controls Analyst
Ref No.: 18-00072
Location: Manhattan, New York
Position Type:Direct Placement
Experience Level: 5 Years
Start Date: 12/01/2017
Sr. IT Controls Specialist  (3-8 years experience)
Location:  NYC
Salary: OPEN
Sponsorship is not available at this time.  Full time position
We are currently seeking a IT Compliance/Risk Analyst for a permanent opportunity with our direct client located in midtown Manhattan, NY
~Strong Risk Management background
~Must have a working knowledge of CoBIT, COSO
~NIST Framework experience
~Experience working in technology related sector a plus.
  • Demonstrate knowledge of Information Technology general risks and controls and related internal and external audit best practices.
  • Demonstrate knowledge of current and emerging technologies and related risks.
  • Demonstrate knowledge of NIST, COSO, CoBIT Frameworks and other internal control methodologies.
  • Proficient in Microsoft Office Suite, Visio, and Access Database skills.
  • Ability to comfortably interact across all departments within an organization.
  • Ability to evaluate and remediate operational incidents that arise in the normal course of business.
  • Highly disciplined, able to work with limited supervision and make independent decisions.
  • Enthusiastic, self-motivated and willing to take personal responsibility.
Experience Required: 
  • Must possess hands-on technology risk management experience. This includes performing IT focused reviews of pre/post system implementations, operating systems, databases, data center, Cloud providers, disaster recovery, and general application computer controls.
  • Experience working in the technology related sector a plus.
    Proficient in security concepts including cyber security, technology operations (i.e., client server, LAN, UNIX, Windows, DB2, Oracle, SQL, VMWare, cloud computing), and system development life cycle.
    Preferably within a financial services environment, knowledge and experience with documenting and formalizing the security risks and controls surrounding enterprise data centers, network technologies, virtualization, unified communication, and mobility.
  • Knowledge of enterprise control structure architecture and aligning security architecture controls, processes, and tools within that enterprise framework.
  • Repeated experience in security policy development or broad security operations management, and in developing and managing a security governance program. Security policy and architectural project management or security auditing background may be considered.
  • Repeated experience in successful security incident monitoring and breach response management.
Bachelor's Degree in Information Systems, Computer Science or related field. Postgraduate degree a plus or equivalent work experience.
CISA or relevant Certifications a plus but not necessarily required.