Senior IT Compliance Analyst in Englewood, CO at WOW!

Date Posted: 2/20/2020

Job Snapshot

  • Employee Type:
    Full-Time
  • Location:
    Englewood, CO
  • Experience:
    Not Specified
  • Date Posted:
    2/20/2020
  • Job ID:
    REQ-2019-35

Job Description

Summary:

The Senior IT Compliance Analyst will assist in the management of IT Compliance initiative, IT risk assessments, IT Control metrics and reporting, to ensure systems compliance with applicable IT regulatory requirements, as well as WOW! IT policies and procedures.  This position will manage multiple work-streams, lead IT compliance projects, external audit response (including PCI, SOX, SOC 1 and 2), build and manage data analytics for reporting, assist with professional development activities, build strong relationships and become a trusted advisor across the company. 

Essential Duties and Responsibilities:

Essential duties and responsibilities include, but are not limited to, those listed below:

  • Responsible for monitoring, and reporting on internal IT control design, and operating effectiveness, across complex information systems, platforms, and operating procedures. 
  • Responsible for adherence to established timelines, risk-based scoping methodology, planning procedures, fieldwork procedures, and reporting procedures.
  • Manages and coordinates IT audit procedures to ensure compliance with corporate mandates including: SOX 404, PCI DSS, SOC 1 and SOC 2 reporting requirements.
  • Dives into the details of technical business processes and practices to identify internal IT control deficiencies, and ensures the timely implementation of corrective actions are implemented to drive-down risk.  Acts as a trusted advisor to key stakeholders and process owners.
  • Gathers, analyzes, and reports data documenting internal IT control processes over financial reporting, payment card processing, etc.
  • Coordinates efforts across multiple departments to ensure audit requirements are met within required timelines.
  • Works with external and internal auditor(s) in the interpretation and monitoring of IT controls to ensure accurate scope and scrutiny are applied.  Participates in testing and interacts with external auditors as needed.
  • Establishes upward and downward information flow that is essential for the communication and reporting of critical risks throughout the organization.
  • Builds automated audit/data analytic procedures and metrics where feasible.
  • Strengthens internal IT control framework, through improved Policies, Procedures, and Training.
  • Conducts security research to keep abreast of latest security issues, advances, and changes.  Utilizes knowledge of the current IT environment, technology trends and advancements, and communicates this information to the GRC team and leadership through written correspondence and verbal presentations to drive down risk and identify efficiencies.
  • Responsible for applying strong project management skills, inspiring teamwork, responsibility, and accountability with engagement team members, and using current technology and tools to enhance the effectiveness of deliverables and services. 
  • Data analytic, and reporting of metrics and trends experience required.
  • Other duties as assigned


Qualifications:

To perform this job successfully, an individual must be able to perform each essential duty satisfactorily.  The requirements listed below are representative of the knowledge, skill, and/or ability required.  Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

-Education:

  • Bachelor’s Degree in Computer Science, Information Security, Management Information Systems, or related field required
  • CPA, CA, CISA, CISSP, CISM, CBCP, CIA or CFE certification preferred

-Experience/Skills Needed:

Required:

  • 4-7 years of progressive experience in IT Audit and/or Information Security.
  • Must possess strong knowledge of IT organization business processes and systems (IT Security, data management, architectural and planning, technology lifecycle management, regulatory concerns).
  • Must have experience testing and evaluating the effectiveness of IT general controls (change management, logical access, IT operations)
  • Working knowledge of Payment Card Industry Data Security Standards (PCI DSS), and Sarbanes-Oxley Act of 2002 (SOX).
  • Ability to work individually, within a team, and with other groups.
  • Excellent communication skills, both verbal and written, across all user levels.
  • Demonstrates and promotes commitment within teams, to live and work by the WOW! Core Competencies which include Customer Focus, Accountability, Situational Adaptability, Collaboration, and Effective Communications.

Preferred:

  • Prior experience in public accounting.
  • Experience in Agile project methodologies.
  • Prior HIPAA/SOC2 experience.
  • Working knowledge of COBIT 5, NIST CSF, and ISO 27000 series frameworks is preferred.
  • Technical knowledge of operating systems and databases, including AS400, Windows, Unix/Linux, Oracle, SQLServer is preferred.

-Computer Skills:

  • Proficient with Microsoft Office applications (Word, Excel, PowerPoint, Access, Visio)
  • Familiar with data analytic and automated audit techniques
  • Familiar with agile project management practices and principles
  • ServiceNow GRC preferred
  • SQL knowledge preferred

-Physical Demands/Working Conditions:

The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

  • Must be able to perform computer functions and operate routine office equipment
  • Regularly required to talk and hear
  • Required to use hands to type, handle objects and paperwork
  • Required to reach and hold on to items at chest level or reach above the shoulder
  • Required to use close vision and be able to focus
  • Occasional travel may be required

WOW! is an Equal Opportunity Employer/Minorities/Women/Protected Veterans/Disabled/Sexual Orientation/Religion/Gender Identity employer

WOW! is an Equal Opportunity Employer/Minorities/Women/Protected Veterans/Disabled/Sexual Orientation/Gender Identity employer