IT Compliance Audit Analyst

SUMMARY

The IT Compliance Audit Analyst is primarily responsible for the prevention and remediation of Information Technology General Control (ITGC) deficiencies. In addition, the analyst will also be responsible for completing risk-based audits of IT processes and systems independently to aid in the identification of process and control gaps and provide recommendations for remediation. Responsibilities include aiding the Corporate IT audit process by liaising with internal and external audit teams and ensuring appropriate adherence to compliance controls through education, process monitoring and enforcement of business standards. This individual may act independently to determine methods and procedures on new or special assignments and could drive change on assigned projects or processes.

ESSENTIAL DUTIES and RESPONSIBILITIES include the following:

• Perform deficiency prevention and remediation over necessary IT General Controls to satisfy Sarbanes-Oxley (SOX) requirements of the Company's In-Scope systems at all Company facilities.
• Process oversight, including relevant feedback regarding IT best practices related to increasing efficiency and enhancing the control environment.
• Performance of risk based IT and Business process audits and special projects.
• Design and optimization of ITGCs for SOX and Non-SOX controls.
• Provide insight on innovation for deficiency reduction based on proactive approach.
• Provide best practice support to Information Security team for SEC Cybersecurity Disclosures and other information security initiatives.
• Ability to talk technically with systems administrators and engineers to understand their operational needs.
• Establish and maintain constructive working relationships with IT and business management staff.
• Stay up to date with the latest technology and improvement strategies.
• Other duties as assigned.

REGULATORY

Ability to obtain racing and/or gaming licenses as required in any jurisdiction where CDI operates. The Gaming industry is highly regulated and as such demands an extensive background check to obtain a license. Must be 21 years of age or older.

EDUCATION and EXPERIENCE

• Bachelor’s Degree in Business Administration, Information Technology, or equivalent experience required.
• Certified Information Systems Auditor (CISA) required.
• Knowledge of Sarbanes Oxley requirements, including the design & configuration of controls around security, business processes and within IT environments.
• Minimum of 2 to 4 years of Audit experience. Public audit and/or solid corporate Internal Audit experience desired. Knowledge of GAAP, GAAS, COSO, COBIT and PCAOB regulations and requirements.
• Understanding of key domains of information technology general controls, including change management, access to programs and data, computer operations and systems development.
• Experience with auditing business processes and financial statements, including test of controls, test of details, and sampling methodologies.
• Thorough understanding of ERP and supporting IT systems.
• Knowledge of information systems security and controls for information technologies. such as LAN, Client/Server, Mainframe, Oracle, SQL Server, and networks is desirable. 
• Advanced proficiency in Microsoft Office, particularly Excel.
• ITIL 4 Foundation Certification preferred.
• Experience with PCI, Cybersecurity, and Data Analytics preferred.

REQUIRED SKILLS

• Exceptional leadership, collaboration, and communication skills.
• Superb recordkeeping, time management and organizational skills.

PHYSICAL DEMANDS/ WORKING CONDITIONS:

• Extended periods of sitting at a desk and working on a computer.
• Regular use of a keyboard and mouse for typing and navigating software.
• Viewing a computer screen for prolonged periods.
• Ability to manipulate paperwork, including filing, sorting, and organizing.
• Moving within the office environment to attend meetings, use office equipment, or interact with colleagues.
• Occasional lifting of office supplies or paperwork (up to 20 pounds).
• Speaking and listening to colleagues and clients in person, over the phone, or via video conferencing.
• Working in a climate-controlled office environment with moderate noise levels.
• Performing repetitive tasks such as data entry or document preparation.
• Working under artificial lighting conditions typical of an office environment, which may include fluorescent or LED lighting