Sr. IS Risk and Compliance Analyst in US-Remote

  • Title: Sr. IS Risk and Compliance Analyst
  • Code: RCI-0327
  • RequirementID: 105334
  • Location: US-Remote
  • Posted Date: 01/25/2023
  • Duration: 6 Months
  • Salary ($): 0.00 - 0.00 per Hourly
Talk to our Recruiter

  Job Description


Location - Onsite, Hybrid or Remote: Any


1st shift - 8am - 5pm


Required Education:

  • Bachelors + Experience with SOX ITGC controls.


  • Should have worked on consulting/implementation & audit of SOX IT General Controls associated with IT Operations (Mandatory)
  • Excellent understand & experience in IT applications & infrastructure management which includes SDLC, App Security, DevOps, Networks, Data Centre Operations, Service Management/Service Desk, Server Management etc
  • Should be able to identify & report risks related to SOX ITGC design effectiveness & operational effectiveness gaps
  • Should have experience in executing end-to-end SOX ITGC audit life cycle
  • Exposure to other regulatory compliances such as Data Protection Act
  • Candidate should have client facing experience


  • Client interface for understanding the SOX IT General Controls as applicable to Application & Infrastructure operations
  • Conducting assessment of existing processes and aligning them to COBiT 2019 standard
  • Conducting TOE and TOD for ITGCs
  • Documentation of as-is SOX 404 IT General Controls as they are currently being executed in client environments
  • Identify process exceptions and risk with respect to materiality defined by the SOX controller
  • Evaluating 3rd parties and their ITGC environments by assessment of SSAE18 reports
  • Create Process Summaries, Compliance runbooks and RCMs
  • Define RACI for Control owners, executioners etc
  • Work with Senior Management of the organization and business teams in getting assertions
  • Point of contact for the client compliance & IT audit team for provisioning SOX audit evidence within the SLAs defined
  • Provide strategic guidance & consulting support on implementation of SOX controls for Networks, Operating Systems, System Security, Backup & Recovery, Storage, BCP/DR
  • Identify technical remediations for SOX 404 ITGC and create short term and long term roadmap for remediation
  • Conducting regular training for technical teams for SOX control implementation & audits

About Rangam:

Rangam Consultants is a minority, women-owned, disability workforce solutions global organization. Specialized in attracting and retaining talents globally for a rewarding career in IT, Engineering, Scientific, Clinical, Healthcare, Administrative, Finance, Business Management, and many more, while integrating veterans and individuals with disabilities into the workforce. Indeed, we connect career aspirants to relevant job opportunities, be it jobs in USA, UK, India, or Ireland. Also remote jobs, work-from-home jobs, or contract jobs in different verticals and industries.
Rangam strives to put job seekers first, giving them free access to search for jobs, post resumes, and research companies.Every day, we connect millions of people to new opportunities.