Cyber Compliance & Audit Analyst

Cyber Compliance & Audit analyst is a role that requires assessing, challenging, and testing the design and operational effectiveness of controls using TR’s control framework. The role involves executing a testing plan, communicating requirements, reviewing evidence, and finalizing next steps. The ideal candidate should have a background in IT, Accounting, Finance, or equivalent education and experience, with a minimum of 4+ years of relevant work experience in SoX, ITGC, SOC, PCI within Audit, Big 5, consulting firms or as line 1a or line 1b completing IT-IS control testing or working within a Governance or Compliance function across Financial Services organizations.

Requirements

• Bachelor's degree in IT, Accounting, Finance or equivalent education and experience (preferable)
• At least 4+ years of relevant work experience in SoX, ITGC, SOC, PCI within Audit, Big 5, consulting firms or as line 1a or line 1b completing IT-IS control testing or working within a Governance or Compliance function across Financial Services organizations
• One of these certifications in order of preference is essential CISA, CISSP, CCAK, CISM, CRISC or ISO (preferred)
• Strong ethical principles and understanding of business and IS ethics
• Awareness about common security vulnerabilities of web and cloud applications and operating techniques from sources such as SANS, OWASP Top10 and Cloud Security Alliance (CSA)
• Experience in testing Cloud controls and related technologies will be an asset
• Excellent oral and written communication skills in English. Additional expertise in French, Spanish or another language will be an asset
• Knowledge about GRC platforms like ServiceNow, Process Unity, RSA Archer, MetricStream and like

Benefits

• Hybrid Work Model
• Comprehensive benefit plans
• Flexible and supportive benefits for work-life balance: flexible vacation, two company-wide Mental Health Days Off; work from another location for up to a total of 8 weeks in a year, 4 of those weeks can be out of the country and the remaining in the country, Headspace app subscription; retirement, savings, tuition reimbursement, and employee incentive programs; resources for mental, physical, and financial wellbeing
• Culture: Globally recognized and award-winning reputation for equality, diversity and inclusion, flexibility, work-life balance, and more
• Learning & Development: LinkedIn Learning access; internal Talent Marketplace with opportunities to work on projects cross-company; Ten Thousand Coffees Thomson Reuters café networking
• Social Impact: Ten employee-driven Business Resource Groups; two paid volunteer days annually; Environmental, Social and Governance (ESG) initiatives for local and global impact
• Purpose Driven Work: We have a superpower that we’ve never talked about with as much pride as we should – we are one of the only companies on the planet that helps its customers pursue justice, truth and transparency