Job Details

Home

Urgent Hiring:: GRC Manager (SOC) || Location : Remote || Visa : USC Only || Client : KFORCE at Remote, Remote, USA

http://bit.ly/4ey8w48
https://jobs.nvoids.com/job_details.jsp?id=2053959&uid=

Hi,

Hope you are doing great! Please find the requirement below , If you find yourself comfortable with the requirement please reply back with your updated resume and I will get back to you or I would really
appreciate

Role: GRC Manager (SOC)

Location : Remote

Visa : USC Only

Duration: Long Term

Ideal Candidate
:

Experience, critical thinking, risk assessment relevant to the environment.

More deeply tenured (rather than multiple 45-month stints etc)

Understanding business processes, crafting relevant controls.

Strong senior or manager experience with critical thinking and strategic lens. - Managerial experience or a 3rd+
year high performing senior operating as a manager

Preferred certifications: CISA, CIA, CPA, CRISC

Relevant industry experience (Manufacturing/Co-Pack preferred, but really industry involving consumer products and
the relevant business processes. (OTC, PTP, HR/Payroll, Treasury, FSCP etc.)

Responsibilities
:

Building policies and procedures with management.

Risk assessment, impact analysis.

Establishing control framework, SOX compliance by end of fiscal year 2025.

Timeline: Controls set up by mid-2025, additional testing in latter half.

Cultural shift measurement, fine-tuning control designs, identifying gaps.

"Project Orange" SOX compliance efforts.

Transition from data centers to AWS.

Managing demands from management, project management, resolving bottlenecks.

Organizational management under pressure.

No direct reports currently, potential in future.

Interface with PWC daily.

FORMAL JD

About the Role:

We are seeking a highly motivated and experienced IT GRC Manager to join our team. In this role, you will be responsible for maintaining and improving our IT governance, risk, and compliance (GRC) program, with a focus on SOX compliance,
application and data transfer controls, validating the completeness and accuracy of reports, third-party risk management and disaster recovery.

Key Responsibilities:

IT Risk Assessments:

Conduct comprehensive IT risk assessments, including identifying and analyzing potential threats and vulnerabilities
across applications, infrastructure, and data.

Develop and maintain risk registers, documenting identified risks, their potential impact, and mitigation strategies.

Collaborate with IT and business stakeholders to prioritize and remediate identified risks.

Assess impact of IT changes to policies, risks, controls, and governance process (including but not limited to disaster
recovery, RCM).

SOX Compliance:

Maintain and update the Risk and Control Matrix.

Evaluate the design and monitor the execution of management's SOX controls.

Participate in business process walkthroughs to identify application controls, reports, and ITGC dependencies/risks.

Review SOC reports and map control deficiencies to relevant IT risks.

Ensure all control evidence of operating is maintain timely, with appropriate detail for all IT controls; own the
development, reporting, completion of control remediation plans

Train and educate IT teams and control owners on the effective operation of controls

Application and Data Transfer Controls, Report (IPE) Validation:

Identify the application controls, interfaces/batch jobs and reports key to supporting SOX business processes

Evaluate the design and effectiveness of application controls.

Evaluate the design and effectiveness of controls intended to mitigate data transfer errors/incompleteness

Evaluate the design (completeness and accuracy) of reports used for key controls

Third-Party Risk Management:

Develop and implement a third-party risk management program.

Monitor and manage risks associated with third-party relationships.

Disaster Recovery:

Develop, maintain, and test the IT disaster recovery plan, inclusive of supporting audits and requests for understanding
and evidence by 3rd parties.

Cyber Security:

Perform cyber security posture evaluations.

Design and execute strategies to evaluate the ICFR impact of cyber security incidents.

Draft the appropriate disclosures regarding cyber security posture and cyber incidents and response as necessary.

Ongoing Regulatory Compliance:

Ensure compliance with relevant regulations and industry standards (e.g., SOX, NIST).

Assist with internal and external audits.

Develop and deliver GRC training to IT and business stakeholders.

Skills/Qualifications:

         Advanced knowledge of SOX controls and compliance; experience implementing or improving SOX.

         Strong drive and organizational skills inclusive of project and program management.

         Ability to proactively, productively manage diverse stakeholder groups.

         Excellent accounting and analytical skills.

         Technical expertise in ERP system design and operation.

         In-depth knowledge of IT governance frameworks (e.g., COBIT, ITIL) and risk management methodologies.

         Excellent interpersonal and communication skills, verbal and written.

         Strong understanding of SOX requirements and IT general controls (ITGCs).

         Ability to analyze and solve problems, results oriented.

         Able to prioritize work, and determine when necessary to switch priorities.

         Experience with SAP preferred.

Education and Experience:

         Undergraduate degree in Accounting, Information Technology, Computer Science or related technical degree required.

         Certified Public Accountant (CPA), Certified Internal Auditor (CIA), Certified Information Systems Auditor (CISA), or Certified in Risk and Information Systems Control (CRISC) designation required (two or
more preferred).

         5+ years relevant work experience in public accounting or 8+ years industry required.

         3+ years working with SOX in the IT domain with or for a company listed on a US market required.

Thanks And Regards

Khokan Kaviraj

Email:

[email protected]

Hangout:

[email protected]

Linked In:

https://www.linkedin.com/in/khokan-kaviraj-582655166/

Accroid Inc.

1007 Orange ST 4th FL 1651 Wilmington, DE 19801

--

Keywords: information technology Colorado Delaware Florida
Urgent Hiring:: GRC Manager (SOC) || Location : Remote || Visa : USC Only || Client : KFORCE
[email protected]
http://bit.ly/4ey8w48
https://jobs.nvoids.com/job_details.jsp?id=2053959&uid=

[email protected]
View All

10:16 PM 06-Jan-25

To remove this job post send "job_kill 2053959" as subject from [email protected] to [email protected]. Do not write anything extra in the subject line as this is a automatic system which will not work otherwise.

Your reply to [email protected] -

To

Subject
Message -

kkviraj@accroid.com wrote:
Hi,

Hope you are doing great! Please find the requirement below , If you find yourself comfortable with the requirement please reply back with your updated resume and I will get back to you or I would really
 appreciate

Role: GRC Manager (SOC)

Location : Remote

Visa : USC Only

Duration: Long Term

Ideal Candidate
:

Experience, critical thinking, risk assessment relevant to the environment.

More deeply tenured (rather than multiple 45-month stints etc)

Understanding business processes, crafting relevant controls.

Strong senior or manager experience with critical thinking and strategic lens. - Managerial experience or a 3rd+
 year high performing senior operating as a manager

Preferred certifications: CISA, CIA, CPA, CRISC

Relevant industry experience (Manufacturing/Co-Pack preferred, but really industry involving consumer products and
 the relevant business processes.  (OTC, PTP, HR/Payroll, Treasury, FSCP etc.)

Responsibilities
:

Building policies and procedures with management.

Risk assessment, impact analysis.

Establishing control framework, SOX compliance by end of fiscal year 2025.

Timeline: Controls set up by mid-2025, additional testing in latter half.

Cultural shift measurement, fine-tuning control designs, identifying gaps.

"Project Orange" SOX compliance efforts.

Transition from data centers to AWS.

Managing demands from management, project management, resolving bottlenecks.

Organizational management under pressure.

No direct reports currently, potential in future.

Interface with PWC daily.

FORMAL JD

About the Role:

We are seeking a highly motivated and experienced IT GRC Manager to join our team. In this role, you will be responsible for maintaining and improving our IT governance, risk, and compliance (GRC) program, with a focus on SOX compliance,
 application and data transfer controls, validating the completeness and accuracy of reports, third-party risk management and disaster recovery.

Key Responsibilities:

IT Risk Assessments:

Conduct comprehensive IT risk assessments, including identifying and analyzing potential threats and vulnerabilities
 across applications, infrastructure, and data.

Develop and maintain risk registers, documenting identified risks, their potential impact, and mitigation strategies.

Collaborate with IT and business stakeholders to prioritize and remediate identified risks.

Assess impact of IT changes to policies, risks, controls, and governance process (including but not limited to disaster
 recovery, RCM).

SOX Compliance:

Maintain and update the Risk and Control Matrix.

Evaluate the design and monitor the execution of management's SOX controls.

Participate in business process walkthroughs to identify application controls, reports, and ITGC dependencies/risks.

Review SOC reports and map control deficiencies to relevant IT risks.

Ensure all control evidence of operating is maintain timely, with appropriate detail for all IT controls; own the
 development, reporting, completion of control remediation plans

Train and educate IT teams and control owners on the effective operation of controls

Application and Data Transfer Controls, Report (IPE) Validation:

Identify the application controls, interfaces/batch jobs and reports key to supporting SOX business processes

Evaluate the design and effectiveness of application controls.

Evaluate the design and effectiveness of controls intended to mitigate data transfer errors/incompleteness

Evaluate the design (completeness and accuracy) of reports used for key controls

Third-Party Risk Management:

Develop and implement a third-party risk management program.

Monitor and manage risks associated with third-party relationships.

Disaster Recovery:

Develop, maintain, and test the IT disaster recovery plan, inclusive of supporting audits and requests for understanding
 and evidence by 3rd parties.

Cyber Security:

Perform cyber security posture evaluations.

Design and execute strategies to evaluate the ICFR impact of cyber security incidents.

Draft the appropriate disclosures regarding cyber security posture and cyber incidents and response as necessary.

Ongoing Regulatory Compliance:

Ensure compliance with relevant regulations and industry standards (e.g., SOX, NIST).

Assist with internal and external audits.

Develop and deliver GRC training to IT and business stakeholders.

Skills/Qualifications:

Advanced knowledge of SOX controls and compliance; experience implementing or improving SOX.

Strong drive and organizational skills inclusive of project and program management.

Ability to proactively, productively manage diverse stakeholder groups.

Excellent accounting and analytical skills.

Technical expertise in ERP system design and operation.

In-depth knowledge of IT governance frameworks (e.g., COBIT, ITIL) and risk management methodologies.

Excellent interpersonal and communication skills, verbal and written.

Strong understanding of SOX requirements and IT general controls (ITGCs).

Ability to analyze and solve problems, results oriented.

Able to prioritize work, and determine when necessary to switch priorities.

Experience with SAP preferred.

Education and Experience:

Undergraduate degree in Accounting, Information Technology, Computer Science or related technical degree required.

Certified Public Accountant (CPA), Certified Internal Auditor (CIA), Certified Information Systems Auditor (CISA), or Certified in Risk and Information Systems Control (CRISC) designation required (two or
 more preferred).

5+ years relevant work experience in public accounting or 8+ years industry required.

3+ years working with SOX in the IT domain with or for a company listed on a US market required.

Thanks And Regards

Khokan Kaviraj

Email:

kkviraj@accroid.com

Hangout:

kavirajkhokan1@gmail.com

Linked In:

https://www.linkedin.com/in/khokan-kaviraj-582655166/

Accroid Inc.

1007 Orange ST 4th FL 1651 Wilmington, DE 19801

Keywords: information technology Colorado Delaware Florida 
Urgent Hiring:: GRC Manager (SOC) || Location : Remote || Visa : USC Only || Client : KFORCE
kkviraj@accroid.com

Your email id:

Captcha Image:

Captcha Code:

Pages not loading, taking too much time to load, server timeout or unavailable, or any other issues please contact admin at [email protected]

Time Taken: 0

Location: ,