Senior Cyber Compliance & Audit analyst

Join Thomson Reuters as a Senior Cyber Compliance & Audit analyst in Richmond, VA. The role involves assessing and testing controls, executing testing plans, and compiling reports. You will work collaboratively with stakeholders to improve the control testing process. The ideal candidate has a Bachelor's degree in IT, Accounting, Finance, or equivalent education and experience. At least 4+ years of relevant work experience in SoX, ITGC, SOC, PCI within Audit, Big 5, consulting firms or as line 1a or line 1b completing IT-IS control testing or working within a Governance or Compliance function across Financial Services organizations.

Requirements

• Bachelor's degree in IT, Accounting, Finance, or equivalent education and experience
• At least 4+ years of relevant work experience in SoX, ITGC, SOC, PCI within Audit, Big 5, consulting firms or as line 1a or line 1b completing IT-IS control testing or working within a Governance or Compliance function across Financial Services organizations
• One of the following certifications in order of preference is essential: CISA, CISSP, CCAK, CISM, CRISC or ISO
• Strong ethical principles and understanding of business and IS ethics
• Awareness about common security vulnerabilities of web and cloud applications and operating techniques from sources such as SANS, OWASP Top10 and Cloud Security Alliance (CSA)
• Experience in testing Cloud controls and related technologies will be an asset
• Excellent oral and written communication skills in English. Additional expertise in French, Spanish or another language will be an asset
• Knowledge about GRC platforms like ServiceNow, Process Unity, RSA Archer, MetricStream and like

Benefits

• Comprehensive benefit plans to include flexible vacation, two company-wide Mental Health Days off, access to the Headspace app, retirement savings, tuition reimbursement, employee incentive programs, and resources for mental, physical, and financial wellbeing