Job Post: Senior IT Controls Specialist

Position Profile:Senior IT Controls SpecialistClient: Steel/Metals services firm/supplier Role and Responsibilities:The IT Controls Specialist plays a pivotal role in ensuring the enterprise’s compliance with the Sarbanes Oxley Act/Bill 198, specifically SOX 404. This individual is responsible for testing, documenting, evaluating, remediation and improving internal controls over financial reporting for effectiveness and operational efficiency. The IT Controls Specialist will fulfill these duties by collaborating with internal and external audit teams, IT management, corporate accountants, consultants and other stakeholders to ensure compliance project deliverables are met. Strong knowledge of governance frameworks is essential for this position. 

Additionally, the IT Controls Specialist is responsible for the review, documentation and evaluation of test manuals and automated computer controls throughout the corporate IT environment, including server, applications, middleware and client side controls.

 • Develop and implement testing methodologies for application development, IT infrastructure, security and availability.• Review existing documentation of IT controls, business processes, policies, procedures and management reports for effectiveness and sustainability.• Design and execute SarbOx compliance tests of operating effectiveness for IT systems and internal controls.• Conduct risk assessments on business and operational processes, procedures and policies.• Interpret audit results and make conclusions on the adequacy and reliability of controls; prepare and present reports as necessary.• Prioritize control projects based on severity of risk and non-compliance.• Communicate control strengths and weaknesses to internal audit; collaborate with internal audit to develop mitigation plans.• Apply COBIT, COSCO, ITIL or ISO 17799 frameworks to all documentation and remediation efforts.• Design and perform reengineering of processes and procedures in need of remediation.• Conduct gap analysis via testing and recommend specific actions to fix gaps in processes or process management.• Design enhancement for internal controls such as segregation of duties, production change management, software management, security, and incident handling and transmission integrity.• Draft new workflows, including impact statements on how revised processes shall be incorporated into daily tasks.• Assist the internal audit team in delivering requests from external Specialists and consultants.Liaison with external Specialists to facilitate the auditing process.• Design audit programs to ensure ongoing evaluation and validation of IT control effectiveness. Requirements:• Bachelor’s degree in Accounting, Finance or IT. Master’s degree preferred.• 5 years internal audit experience or prior experience with a Big 4 firm or Professional Services firm.• CISSP, CISA, appropriate Certifications for the role.  • Solid and proven experience in a consultative approach with Business Process, IT, IT Security 

Our Client is widely considered the global authority selling their products to integrated steel companies in the United States and Canada. The company is in its 158th year of service to the steel industry. They employ approximately 4,000 people at operations located in Michigan, Minnesota, Canada and corporate headquarters in Cleveland, Ohio.

 Qualified candidates should contact:Frank Cirino, Jr., CISSP Practice Leader-Security, & Wireless GroupsMarvel Consultants, Inc.->Recruiters of Key People!!fcirino@marvelconsultants.com216.292.2855 ext. 121 216.390.1492 Mobile