| Risk Management IT Auditor at Remote, Remote, USA |
| Email: [email protected] |
| From: Vicky, istaffx [email protected] Reply to: [email protected] Risk Managers at Capital One are highly motivated professionals with excellent project management and communication skills. They have a high level of exposure across lines of business and the opportunity to work with control stakeholders of various levels to create and implement innovative solutions to identify and mitigate potential risks to the Company. Google Cloud Platform (GCP) Project Responsibilities: Risk and Control Gap Assessment: Using the FedRamp moderate risk framework, complete a fit/gap analysis to determine and design the necessary controls and processes to ensure technology risk is appropriately mitigated. This person would identify all actions required to ensure adherence to service level agreements, corporate policies, enterprise standards, and external regulations. This person provides subject matter expertise and consultation to bolster the technology control landscape and reduce risk. Control Implementation: Upon determining the necessary controls and activities to close the risk gaps, successfully orchestrate and oversee the implementation of the action items across the organization. Control Validation: Determine and perform the necessary due diligence activities to get Management comfort on all GCP controls design and operating effectiveness. Basic Qualifications: Bachelors degree or military experience At least 1 year of experience with Google Cloud Platform (GCP) cloud computing At least 3 years of experience in Risk Management Preferred Qualifications: At least 3 years of experience in IT Audit At least 3 years of experience in Technology Project Management CGSA Core Service Responsibilities: Control Governance: Ensure assigned Tech controls are operating effectively and as designed/intended. Own the operational oversight processes that ensure adherence to service level agreements, corporate policies, enterprise standards, and external regulations. Provide the subject matter expertise and consult to bolster the technology control landscape and reduce risk. Control Administration: Support the risk assessments and technology walkthroughs to assess and identify any risk control gaps, and determine any control additions, modifications, deletions required. Partner with Tech Risk to provide consult to the LOBs on control design and language, perform effective challenge on control design, and prepare for both internal and external testing. Testing Readiness & Support: Perform independent Management pre-audit assessments of first line controls to determine sufficiency of processes and effectiveness of execution prior to formal testing evaluation. Support first line operations by supporting timely and proper testing of Tech controls, per the outlined annual testing schedule. Issues Management: In the event there is a potential issue noted with any control, be responsible for providing consultation and effective challenge, and accountable for obtaining the official disposition / Managements decision. Any confirmed issues are then root-caused and have impacts analyzed to determine the appropriate remediation plan. As Issue Manager, oversee plan fulfillment and successful retest and issue closure. Project Delivery: Lead and drive specific assignments to streamline, automate, enhance and mature the Tech control landscape. Basic Qualifications: Bachelors degree or military experience At least 3 years of experience in IT Audit At least 3 years of experience in Risk Management At least 3 years of experience in Technology Project Management Preferred Qualifications: 1+ years of experience developing and implementing industry risk frameworks, quantitative analysis, tools, and methodologies (COSO, quantitative analysis, Process, Risk and Control) 1+ years of experience working with Big4 audit firms 1+ years of experience working with Sarbanes Oxley regulations CISA, CRISK, CISM, CISSP certifications Keywords: information technology Risk Management IT Auditor [email protected] |
| [email protected] View all |
| Wed May 29 00:35:00 UTC 2024 |