Remote IT Controllership Contract in Lynchburg, VA at Vaco

Date Posted: 9/3/2020

Job Snapshot

Job Description

As an IT Controllership Associate, you will apply technical knowledge and experience to improve IT governance practices and principles. You will be responsible for researching and responding to questionnaires and security assessments. Daily responsibilities include working with process owners, application owners, enterprise security, risk, auditors and senior management. You will also have the opportunity to assist the team and work on various projects and initiatives relating to IT governance.

* Evaluate IT Security, Risk, and Internal Audit control reports and work with affected teams to determine remediation or acceptance efforts
* Develop, document and monitor vulnerability management processes that support company standards and policy.
* Oversee vulnerability exception identification and tracking.
* Work with IT peers to inform, educate and manage vulnerability exceptions.
* Research and complete security assessments.
* Assist IT Teams in developing procedures and processes.
* Works to ensure alignment exists between policies, procedures, and controls.
* Maintain knowledge of current and upcoming regulatory requirements.
* Create oral and written presentation to and for IT management and teams.
* Assists with GRC technology administration
* Assist with various tasks to support the SOX Program; such as control related matters, segregation of duties, policy, procedures, design of controls in systems and processes
* Develop and proactively enhance IT controls by enhancing and supplementing policy, process, and standard operating procedures.
* Drive process improvement initiatives across the IT organization.
* Perform other duties as assigned or required

* Bachelor's degree in information technology, computer science, business, or other applicable field or equivalent combination of training, education, and experience
* 3+ years of relevant IT work experience, preferably within the financial services or insurance industry.
* Self-motivated and self-directed
* Ability to learn and work independently
* Strong analytical and problem-solving skills
* Excellent oral communication and writing skills
* Ability to proactively manage tasks and adhere to deadlines
* Impeccable analytical and organizational skills
* Ability to work closely with a senior management team
* Knowledge and understanding of technology software: lifecycle management
* Understanding of Vulnerability Management principles

* Project management experience
* Knowledge of Sarbanes-Oxley Act of 2002
* Knowledge of NIST, COBIT frameworks
* Experience with GRC software
* Knowledge and understanding of Information Technology governance risk and compliance processes such as; policies, control standards, risk management concepts, or information security
* Ability to assess current processes/procedures and make recommendations