Thomson Reuters

Cyber Compliance & Audit Analyst

Join Thomson Reuters as a Cyber Compliance & Audit Analyst in Richmond, VA. Assess controls, ensure compliance, and enjoy a hybrid work model with comprehensive benefits.

Department - JobBoardly X Webflow Template
Direct Hire
Job Level - JobBoardly X Webflow Template
Mid-Level
ServiceNow Role Type:
Department - JobBoardly X Webflow Template
System Administrator
ServiceNow Modules:
Department - JobBoardly X Webflow Template
DevOps
Department - JobBoardly X Webflow Template
Governance, Risk, and Compliance
Department - JobBoardly X Webflow Template
Virtual Agent
ServiceNow Certifications (nice to have):
Department - JobBoardly X Webflow Template
Certified Implementation Specialist - Vulnerability Response
Department - JobBoardly X Webflow Template
Certified System Administrator

Job description

Date - JobBoardly X Webflow Template
Posted on:
 
February 12, 2025

We are hiring a Cyber Compliance & Audit Analyst to join our team in Richmond, VA. As a Compliance Program Technical Auditor, you will assess and test controls using TR's control framework, communicate requirements to control owners, and present audit results to managers & supervisors.

Requirements

  • Bachelor's degree in IT, Accounting, Finance or equivalent education and experience
  • At least 4+ years of relevant work experience in SoX, ITGC, SOC, PCI within Audit, Big 5, consulting firms or as line 1a or line 1b completing IT-IS control testing or working within a Governance or Compliance function across Financial Services organizations
  • One of these certifications in order of preference is essential CISA, CISSP, CCAK, CISM, CRISC or ISO (preferred)
  • Strong ethical principles and understanding of business and IS ethics
  • Awareness about common security vulnerabilities of web and cloud applications and operating techniques from sources such as SANS, OWASP Top10 and Cloud Security Alliance (CSA)
  • Experience in testing Cloud controls and related technologies will be an asset
  • Excellent oral and written communication skills in English. Additional expertise in French, Spanish or another language will be an asset
  • Knowledge about GRC platforms like ServiceNow, Process Unity, RSA Archer, MetricStream and like

Benefits

  • Hybrid Work Model: flexible hybrid working environment (2-3 days a week in the office depending on the role) for our office-based roles while delivering a seamless experience that is digitally and physically connected
  • Wellbeing: Comprehensive benefit plans; flexible and supportive benefits for work-life balance: flexible vacation, two company-wide Mental Health Days Off; work from another location for up to a total of 8 weeks in a year, 4 of those weeks can be out of the country and the remaining in the country, Headspace app subscription; retirement, savings, tuition reimbursement, and employee incentive programs; resources for mental, physical, and financial wellbeing
  • Culture: Globally recognized and award-winning reputation for equality, diversity and inclusion, flexibility, work-life balance, and more
  • Learning & Development: LinkedIn Learning access; internal Talent Marketplace with opportunities to work on projects cross-company; Ten Thousand Coffees Thomson Reuters café networking
  • Social Impact: Ten employee-driven Business Resource Groups; two paid volunteer days annually; Environmental, Social and Governance (ESG) initiatives for local and global impact
  • Purpose Driven Work: helping customers pursue justice, truth and transparency
  • Comprehensive benefits package including market competitive health, dental, vision, disability, and life insurance programs, as well as a competitive 401k plan with company match

Requirements Summary

Bachelor's degree in IT, Accounting, Finance or equivalent education and experience. At least 4+ years of relevant work experience. One of these certifications is essential