IT Compliance Analyst

Position Summary:

The Compliance Analyst will serve as the subject matter expert for all processes and procedures as it pertains to internal audit controls within IT.   This role will be responsible for the design, implementation and execution of governance controls in accordance to external audit guidelines for applications and IT operations.  This is a highly collaborative role and will partner with other departments within BRP to assure that all IT controls are successful and timely.  This role is an extremely proactive role that requires a high degree of accuracy and will require cross-departmental collaboration and training. 

Principal Responsibilities:

• Ensure that our controls are designed effectively and are executed timely and in accordance with our external governing bodies                 expectations.
• Conduct user access, privilege access, and segregation of duty reviews within our agency management system, CRM and active             directory.
• Evaluate and own our Change Management process and ensure that proper protocols are being followed when making a change to         any financially relevant system.
• Assist other IT system owners conduct their access reviews and segregation of duty to ensure they are complete and timely.
• Evaluate our onboard/offboarding process to ensure that its being done timely and completely.  
• Evaluate and modify our operating controls as necessary to assure no material weakness is found within IT.
• Execute, document, and evidence all IT controls demonstrating completeness and accuracy.
• Partner with other departments to review their IT control processes and evidence and ensure they are being executed in accordance         to our control narratives.
• Conduct reviews of our firewalls, backup policies/failures, IT policies, financially relevant folder access, password policy, and patch            management effectiveness.
• Develop and execute new compliance policies and procedures as necessary.
• Conduct regular meetings with leadership and provide updates on policy changes, compliance, and deficiency status.

Education, Experience, Skills and Abilities Requirements:

• 5 working with governance controls at a publicly traded company.
• Must be extremely collaborative, organized, detail oriented, and proactive.
• Must have a functional knowledge of IT systems (Active Directory, SSO, backup systems, policy management)
• Experience with power shell and/or other scripting languages is a plus.
• Strong communication skills and the ability to communicate only relevant data in a short and concise method is a must.
• Demonstrate the firm’s core values, exuding behavior that is aligned with the firm’s culture

Special Working Conditions:

• Fast paced, multi-tasking environment.
• Travel up to 10% of the time.

Important Notice:

This position description is intended to describe the level of work required of the person performing in the role and is not a contract.  The essential responsibilities are outlined; other duties may be assigned as needs arise or as required to support the Firm. All requirements may be modified to reasonably accommodate physically or mentally challenged colleagues.