It Audit And Compliance Manager

General:

● Ensures effective implementation of global IT controls for stabilization of overall control environment

● Leads Global Compliance team’s efforts in the areas of SOC 1 and SOC 2 standards

● Interfaces with external and client auditors as it pertains to the effectiveness of our IT control environment

● Acts as client-facing Lead IT consultant regarding various aspects of IT controls and Data Security

● Oversees the effectiveness of the IT controls infrastructure/architecture process, including standards, policies and procedures and creates/develops solutions to bring more efficiency to the business

● Responds to client inquiries pertaining to IT controls, Data Security, Incident Management and Certifications standards

Details:

• Maintain Alight’s Control Framework, report statuses and escalate findings and issues.
• Engage with External Auditors and Internal Stakeholders to support successful audit results.
• Conduct internal control monitoring and sample-based assessments/audits for regulatory (SOC, ISO, etc.) audit requirements.
• Support Management teams in client audit coordination and facilitation if required.
• Manage external audits of Alight’s global control framework for regulatory and standards audits.
• Trouble-shoot issues identified in control monitoring and support remediation efforts.
• Engage with local Operational and Quality resources to drive Compliance through local and functional units.
• Write and publish compliance dashboard reports to provide awareness and communicate compliance risks to management.
• Assist documenting and updating as appropriate, the Compliance policies, standards and processes ensuring these are up to date and regularly reviewed.
• Assists in planning, management, and execution of compliance projects.
• Contribute to procedures and processes to standardize and enhance compliance management.
• Work closely with operations and architecture functions, proposal team, and senior leadership team.
• Launch and monitor accuracy of deployed controls into GRC SNOW module on a monthly basis and manage ownership of controls based on inputs.
• Conduct Audit Compliance training to operational teams if requested.

We offer you a competitive total rewards package, continuing education & training, and tremendous potential with a growing worldwide organization.
 

DISCLAIMER:

Nothing in this job description restricts management's right to assign or reassign duties and responsibilities of this job to other entities; including but not limited to subsidiaries, partners, or purchasers of Alight business units.