SOX ITGC Program Analyst (GRC)
Costa Rica
SentinelOne
SentinelOne vereint Endpoint, Cloud Identity und Datenschutz f in einer Lösung - die zusammen mit Security Data Lake für nahtlose und effiziente Cybersecurity ermöglicht.About Us:
SentinelOne is defining the future of cybersecurity through our XDR platform that automatically prevents, detects, and responds to threats in real-time. Singularity XDR ingests data and leverages our patented AI models to deliver autonomous protection. With SentinelOne, organizations gain full transparency into everything happening across the network at machine speed – to defeat every attack, at every stage of the threat lifecycle.
We are a values-driven team where names are known, results are rewarded, and friendships are formed. Trust, accountability, relentlessness, ingenuity, and OneSentinel define the pillars of our collaborative and unified global culture. We're looking for people that will drive team success and collaboration across SentinelOne. If you’re enthusiastic about innovative approaches to problem-solving, we would love to speak with you about joining our team!
What are we looking for?
We are seeking an Analyst with IT General Control (ITGC) experience to join the SentinelOne SOX ITGC Program. This role will have the primary responsibility of supporting the SOX ITGC Program’s objective of ensuring effective controls across the enterprises applications supporting financial reporting.
This position will support the program as it acts as the point of contact between IT and internal / external auditors and to provide leadership in managing auditing activities, requests and developing responses to audit findings, and leading remediation of audit findings.
What will you do?
- Providing quality assurance of all IT General Controls through the performance of internal assessments, walkthroughs, and audits to ensure design and operational effectiveness.
- Monitoring the control environment and ensuring that controls are operational and in-line with established policies and procedures, and controls methodology.
- Supporting the SOx ITGC Program in proactively identifying risks and gaps and facilitating remediation efforts to timely address observations identified during the annual 404 audit.
- Supporting annual scoping efforts by performing risk based analyses over system roles, permissions, configurations and changes.
- Staying up to date on changes to processes, systems and applications and providing guidance on related controls.
- Reviewing third-party vendor attestation and audit reports, and providing feedback to business leaders and risk owners
- Providing relevant controls requirement awareness training to control owners and promoting a culture of internal control excellence.
- Maintaining and ensuring that audit related documentation/records are current and accurate.
What skills and knowledge should you bring?
- 2+ years of audit/assessment experience in working with SOX, IcFR, and internal control design and operations from a Finance and Business Technology perspective.
- Bachelor’s Degree in Business, Accounting, Information Technology, or other quantitative discipline preferred.
- Familiarity with IT General Controls (Logical Access, Change Management and Computer Operations).
- Familiarity with financial reporting and accounting concepts.
- Familiarity with GRC tools such as AuditBoard, Workiva, RSA Archer.
- Familiarity with SaaS applications such as NetSuite, Salesforce and Workday and hosting platforms such as AWS and GCP.
- Industry certifications such as CISSP, CISA, CISM, CPA, PMI, Project Management Professional (PMP), ISO 27001 LA, QSA.
- Excellent written and verbal communication skills.
- Strong analytical and time management skills.
- Ability to maintain a high degree of confidentiality.
SentinelOne is proud to be an Equal Employment Opportunity and Affirmative Action employer. We do not discriminate based upon race, religion, color, national origin, gender (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics.
SentinelOne participates in the E-Verify Program for all U.S. based roles.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Audits AWS CISA CISM CISSP Finance GCP ISO 27001 Monitoring RSA SaaS SOX XDR
Perks/benefits: Transparency
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Product Security Engineer jobs
- Open Cybersecurity Analyst jobs
- Open Security Operations Engineer jobs
- Open Information Security Officer jobs
- Open Principal Security Engineer jobs
- Open Senior Cyber Security Engineer jobs
- Open Information Security Specialist jobs
- Open Senior Product Security Engineer jobs
- Open Chief Information Security Officer jobs
- Open IT Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Senior Penetration Tester jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Network Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Security Consultant jobs
- Open Senior Information Security Analyst jobs
- Open IT Security Analyst jobs
- Open Security Operations Analyst jobs
- Open Manager Pentest H/F jobs
- Open Information System Security Officer jobs
- Open Information Security Architect jobs
- Open Agile-related jobs
- Open Risk assessment-related jobs
- Open Network security-related jobs
- Open Analytics-related jobs
- Open SOC-related jobs
- Open CISA-related jobs
- Open ISO 27001-related jobs
- Open GCP-related jobs
- Open IAM-related jobs
- Open Application security-related jobs
- Open Pentesting-related jobs
- Open Threat intelligence-related jobs
- Open Vulnerability management-related jobs
- Open DevOps-related jobs
- Open DoD-related jobs
- Open Security Clearance-related jobs
- Open APIs-related jobs
- Open CEH-related jobs
- Open Security assessment-related jobs
- Open SaaS-related jobs
- Open Malware-related jobs
- Open Kubernetes-related jobs
- Open Java-related jobs
- Open EDR-related jobs
- Open PowerShell-related jobs