Job Description
Job Overview:
Are you passionate about compliance, audit and cybersecurity, and ready to take on a new and exciting challenge? We are looking for a skilled professional with Sarbanes-Oxley (SOx) experience to help us develop our “Audit Readiness” capability with the GRC function of Enterprise IT (EIT).
Responsibilities:
This role requires an experienced analyst who will assess and assure the design and effectiveness of IT and Security controls, support audit, risk and compliance activities within Enterprise IT and provide insight to leadership regarding the maturity of the control environments and related risks.
- You will be a key member within the IT Governance Risk and Compliance (GRC) function, responsible for driving the controls assurance program.
- Collaborating with both external auditors and the Internal Audit function to facilitate audits impacting Enterprise IT.
- Driving our IT SOX compliance programme, including the periodic review of supplier SOC 1 type II reports and informing application policies defining our approach to SOX implementation.
- Influencing decisions at a leadership level to improve controls, striving to make the wider organization more secure from internal and external threats.
- Supporting IT control operators and platform teams with recommendations and guidance on designing and implementing controls, and challenge where appropriate.
- Designing and reporting relevant metrics and related key performance indicators for the Audit Readiness program which will demonstrate the effectiveness of the program.
- Participating in governance and oversight forums/committees as needed.
- Flexibility to support our colleagues in the wider GRC team, providing professional expertise and developing knowledge of our wider Governance, Risk and Compliance programme.
- Fostering a team culture of integrity and respect with a global outlook.
Required Skills and Experience :
- 4-8 Yrs of Experience is a must.
- Recent working experience as an IT compliance or audit professional
- Solid understanding of auditing and/or implementing Sarbanes-Oxley IT general controls in a modern, diverse environment of applications and platforms (including SaaS and microservices)
- Technical experience in designing and assessing IT controls and policies.
- Understanding and experience of current IT Security standards such as ISO 27001, NIST and/or Data Protection.
- Demonstrable experience in audit and assurance methodologies, with the flexibility to adapt approach to suit a dynamic environment.
- Excellent verbal and written communications skills with the ability to modify style to influence technical and business partners.
- A methodical approach to organising workload to ensure targets are met.
“Nice To Have” Skills and Experience :
- Possess a CISA, CISM or equivalent professional qualification.
- Have recent experience in the Big 4 or other financial consultancy/audit firm with public company clients.
- Experience with ServiceNow, Jira, PowerBI and AuditBoard.
In Return:
At Arm, we want our people to Do Great Things. If you need support or an accommodation to Be Your Brilliant Self during the recruitment process, please email accommodations@arm.com. To note, by sending us the requested information, you consent to its use by Arm to arrange for appropriate accommodations. All accommodation requests will be treated with confidentiality, and information concerning these requests will only be disclosed as necessary to provide the accommodation. Although this is not an exhaustive list, examples of support include breaks between interviews, having documents read aloud or office accessibility. Please email us about anything we can do to accommodate you during the recruitment process.