Work Setup and Location: On-Site, Arayat st., Mandaluyong, Metro Manila
Work Schedule: Morning or Afternoon shift, Monday-Friday (8-hour shift only)
Experience Level: 3-5 years
No. of employees required: 5
About the Role:
We are looking for a detail-oriented
IT Analyst (Controls) to join our team. The role involves ensuring the organization's IT systems and processes comply with established policies, procedures, and regulatory requirements. The ideal candidate will support internal controls, risk assessments, and compliance initiatives while collaborating with cross-functional teams to enhance operational efficiency.
Key Responsibilities:
IT Controls and Compliance
- Develop, implement, and maintain IT control frameworks in alignment with organizational goals and regulatory standards
- Perform regular audits and reviews to ensure compliance with internal policies and external regulations
- Monitor the effectiveness of IT controls and recommend enhancements to mitigate risks
- Collaborate with IT and business units to design controls that align with operational needs
Risk Management
- Identify and assess risks in IT processes and systems
- Develop and implement risk mitigation strategies to address control gaps
- Provide expertise in addressing and resolving audit findings related to IT controls
Policy and Process Development
- Create and maintain IT control documentation, including policies, procedures, and risk assessments
- Assist in developing security and compliance awareness programs for staff
Reporting and Analysis
- Generate reports on IT control performance and risk metrics for senior management and auditors
- Provide insights and recommendations for improving IT governance
Collaboration and Support
- Work with IT teams during the design and implementation of new systems to ensure appropriate controls are embedded
- Act as a point of contact for internal and external audits related to IT systems
Requirements
Qualifications and Skills:
- Education: Bachelor's degree in Information Technology, Computer Science, Business Administration, or a related field
- Experience:
- 3-5 years of experience in IT controls, governance, risk management, or compliance roles
- Hands-on experience with regulatory frameworks such as SOX, GDPR, or ISO 27001
- Technical Skills:
- Strong knowledge of IT control frameworks like COBIT, NIST, or ITIL
- Proficiency in tools for audit and compliance tracking (e.g., GRC platforms, Excel)
- Basic understanding of IT systems and cybersecurity principles
- Soft Skills:
- Strong analytical and organizational skills
- Exceptional communication and interpersonal skills
- Ability to work independently and collaboratively in a fast-paced environment
- Certifications (preferred):
- Certified Information Systems Auditor (CISA)
- Certified in Risk and Information Systems Control (CRISC)
- ITIL Foundation Certification