Compliance Officer

Hi #connections,

We do have a Job Opening for,

Role-----SOX ITGC Compliance Officer

Locations-----New Jersey (Hybrid)

Please share the suitable resumes to ram.r@vysystems.com & https://www.linkedin.com/in/ramkumarjhen/

Job Description:

The resource will be responsible for developing a SOX ITGC (Information Technology General Controls) Control Universe, an ITGC Compliance Schedule, and evaluating the organization’s Standard Operating Procedures (SOPs) to ensure they align with current best practices, regulatory requirements, and the organization’s operational needs. This project aims to ensure that the ITGCs are appropriately designed, tested, and monitored, and that SOPs reflect up-to-date procedures for managing IT operations and compliance.

6 years of experience

Roles, skills and Responsibilities:

-ITGC Control Universe Development

-Identify, document, and categorize all relevant ITGCs, including but not limited to:

-Access Management: User access controls, segregation of duties, privileged user access.

-Change Management: Controls over changes to IT systems, including software updates, patches, and system configurations.

-IT Operations: Controls related to IT system backups, disaster recovery, incident management, and system monitoring.

-Ensure control objectives are up to date for each ITGC, mapping them to the relevant IT systems (e.g. GetAccess, IMS, etc.).

-Identify controls owners, control frequency, control type (manual/automated) and governing standard operating procedures (SOPs).

-Ensure all controls are operating effectively in alignment with governing SOPs.

-Ensure gaps identified are remediated.

-ITGC Compliance Schedule Development

-Develop an ITGC compliance schedule for the fiscal year to ensure controls are executed timely per frequency described in the control universe.

-Integrate a tracking system for monitoring control execution and results. Ensure identified gaps are remediated.

-SOP Evaluation and Update

-Review the Standard Operating Procedures (SOPs) governing the controls identified in the controls universe.

-Assess the alignment of existing SOPs with the organization's ITGCs, ensuring that controls are clearly documented and implemented in the procedures.

-Ensure that SOPs are up to date, clear and comprehensive.

-Ensure SOP was updated in 3 years or less.

-Ensure SOP is maintained in the PDOCs system – Pfizer’s controlled environment.

-ITGC Control Universe Documentation

-A comprehensive, well-structured control universe, detailing each ITGC with its corresponding objective, description, control owners, and frequency.

-A progress tracking system for monitoring design effectiveness of the control.

-Documentation for addressing issues or gaps identified, including a remediation timeline.

-ITGC Compliance Schedule

-A detailed compliance schedule that includes the frequency and responsible parties owning each ITGC.

-A progress tracking system for monitoring control operating effectiveness and compliance status.

-Documentation for addressing issues or gaps identified, including a remediation timeline.

-SOP Evaluation Report

-A list of SOPs that require updates, along with specific recommendations for changes or new procedures.

-A finalized set of updated or new SOPs reflecting the necessary changes and improvements.

-5. Requirements and Skills

The contractor must have the following qualifications:

-Proven experience in ITGC design and implementation, including a strong understanding of COBIT, ISO 27001, NIST, and other relevant frameworks.

-In-depth knowledge of SOX compliance and other regulatory standards that impact IT operations.

-Experience in evaluating and updating Standard Operating Procedures (SOPs) for IT operations and compliance.

-Strong analytical skills and the ability to identify gaps in controls, procedures, or compliance.

-Strong communication skills to collaborate with IT teams, internal audit, and business units.

Education qualification:

Bachelor’s degree preferably in Computer Science or Information Systems and /or equivalent formal training or work experience.

Certifications Needed:

Certificates in relevant fields are added advantage.

Please attach the Updated Resume:

Please share the suitable resumes to ram.r@vysystems.com & https://www.linkedin.com/in/ramkumarjhen/

Kindly fill details,

1. Years of Exp----

2. Visa Status-----

3. Current Location--------

4. Linkedin ID-----

5. Share Updated Resume

Thanks & Regards.,

Ramkumar.R || Sr.Technical Recruiter

Email: ram.r@vysystems.com

Linkedin ID: https://www.linkedin.com/in/ramkumarjhen/

4701 Patrick Henry Drive Building 16 Santa Clara CA 95054, USA.