Senior Analyst, Information Systems Audit

AsanIT Senior Analyst, youare responsible forleading, reviewing, remediation,andsupportauditsrelatedactivitiesto Sarbanes-Oxley (SOX), Privilege access review (PAR),Cybersecurity Maturity Model Certification (CMMC)Level1 and2.

You will play a crucial role planning, executing, and reporting on audits related to Sarbanes-Oxley (SOX) compliance and Cybersecurity Maturity Model Certification (CMMC) requirements, to ensure our organization maintains robust internal controls over financial reporting and meets Department of Defense (DoD) cybersecurity requirements for handling Controlled Unclassified Information (CUI).

The scope of work includes working withcomplianceteam and preparing monthly, quarterly SOXreportfor all the applications undercommercialtower.You will also be workingand collaboratingwithinternal Cyber security, Infrastructure and Applicationteamsto take the input and guidance regarding CMMC2and othercertifications.

The ideal candidate will have a strong background in IT audit, cybersecurity frameworks, and regulatory compliance within highly regulated industries such as finance, defense, or healthcare.

In addition,you will be working withteamon license compliance for various applicationsthis teamsupports.A candidate should have experience working with SaaS vendorsas most of the applications that we currently deal with on licenseconsumptionsare SaaS vendors.

What You Will Do:

• Perform activities by following Strykerscomplianceframework and processes.

• Plan, execute, and report on SOXaudits, focusing on IT General Controls (ITGCs) and application controls.

• Evaluate and test internal controls,identifygaps, and recommend remediation strategies.

• Collaborate with cross-functional teams (IT, finance, cybersecurity, legal) to ensure compliance andtimelyremediation.

• Maintain audit documentation, risk assessments, andevidencerepositories.

• Support external auditors and DoD assessors during formal evaluations.

• Monitor regulatory changes and update audit programs accordingly.

• Provide training and guidance on SOX and CMMC requirements toconcerned stakeholders

What You Need:

• Bachelor's Degree or equivalent from an accredited universityrequired;bachelorsdegree in the areas of Information Systems, Cybersecurity or related field of study preferred.

• 4 to 7years of experience in SOX IT audits, license management,cybersecuritycompliance.

• License management for IT applications.

• Strong understanding ofPAR,SOX, CMMC, Riskmanagementand internal control testing.

• Demonstrated ability to lead and collaborate with cross-functional teams,andcrossinternationalgeographicalregions.