IT Compliance - SOX ITGC Expert

Posted:
8/29/2024, 1:32:50 AM

Location(s):
Austin, Texas, United States ⋅ Texas, United States ⋅ Spring, Texas, United States

Experience Level(s):
Mid Level ⋅ Senior

Field(s):
IT & Security ⋅ Legal & Compliance

Workplace Type:
On-site

IT Compliance - SOX ITGC Expert

Description -

Job Summary

Description -

HP is a proven leader in personal systems and printing, delivering innovations that empower people to create, interact, and inspire like never before. We leverage our strong financial position to extend our leadership in traditional markets and invest in exciting new technologies.

We are looking for visionaries who are ready to make an impact on the way the world works. At HP, the future is yours to create!

Role will be reporting to senior management of IT Compliance under the IT Risk Management and Compliance Division.

This role is responsible for developing IT strategies aligned with a high-impact business agenda and collaborating with vendors and senior management to define information needs and sustain service levels. The role assists in managing IT spends and investments, resolving operational issues directly with clients, and serving as a representative of relevant stakeholders to ensure consistency in plans between IT and respective entities. The role identifies opportunities for leveraging standardized IT solutions and advocates for best practices. The role also cultivates relationships with tactical leaders and contributes to complex projects while providing mentoring and guidance to lower-level employees.

Responsibilities

In the areas of IT General Control Framework management, key responsibilities include but are not limited to the following: 

  • Engage with IT teams, Auditors & Legal as needed 
  • Help manage audit activities 
  • Establishes and maintains relationships with several IT support/business teams. Uses deep business knowledge and business acumen to drive improvements in IT engagement for this initiative.  
  • Communicates specific IT decisions relevant to the IT support teams/business 
  • Facilitate securing management responses from respective HP Global IT leadership 
  • Meet aggressive timelines, deliver quality product and work well in a dynamic team environment 
  • Demonstrate an understanding of standard IT processes and tools 
  • Demonstrate understanding of audit and compliance  
  • Open to implement automation where possible to help improve the process 
  • Establishes and maintains relationships with several IT support/business teams. Uses deep business knowledge and business acumen to drive improvements in IT engagement for this initiative.
  • Meet aggressive timelines, deliver quality product, and work well in a dynamic team environment. Demonstrate an understanding of standard IT processes and tools.
  • Supporting team manager with various activities to help drive the various projects within the team to meet the goals.
  • Engage with IT teams, Auditors & Legal as needed and help manage audit activities.
  • Contribute as part of the second Line of Defense to the compliance of applicable laws & Regulations, Internal codes of practice/Standards and policy and procedures.
  • Support management with delivery of action plans for AIR raised, Audit and SOX Controls testing.
  • Ensuring that approved IT General controls are embedded in the current service lines and processes across HP.
  • Analyze SOC reports (e.g., SOC 1, SOC 2, SOC 3) prepared by service organizations to assess the effectiveness of their controls related to financial reporting, security, availability, processing integrity, confidentiality, and privacy.
  • Gain a deep understanding of the control objectives outlined in the SOC reports and the criteria against which the controls are evaluated.
  • Establishes and maintains relationships with other teams. Uses specific business knowledge and general business acumen to support effective IT engagement for major initiatives.
  • Review all the project deliverables in accordance with SDLC framework.
  • Stay updated on relevant regulations and standards applicable to the industry, Evaluate and recommend improvements to business practices, processes, and controls.
  • Conduct risk assessments to identify potential compliance risks and vulnerabilities within the SDLC process.
  • Develop mitigation strategies and controls to address identified risks and ensure that compliance risks are effectively managed throughout the development lifecycle.
  • Provide support to internal and external auditors and auditees.
  • Plan and conduct regular audits and reviews of software development processes to assess compliance with regulatory requirements and internal policies.
  • Identify non-compliance issues, deviations from standards, and areas for improvement, and work with stakeholders to address them effectively.
  • Develop and deliver training programs to educate development teams and other stakeholders on compliance requirements, best practices, and policies related to software development.
  • Foster a culture of compliance awareness and accountability within the organization.
  • Evaluate and monitor third-party vendors, suppliers, and partners involved in the software development process to ensure that they adhere to compliance requirements and contractual obligations.
  • Continuously assess and improve compliance processes, controls, and procedures to enhance efficiency, effectiveness, and alignment with evolving regulatory requirements and industry best practices.
  • Solicit feedback from stakeholders and incorporate lessons learned into compliance initiatives.


Education & Experience Recommended
• Four-year or Graduate Degree in Computer Science, Information Technology, or any other related discipline or commensurate work experience or demonstrated competence.
• Typically has 7-10 years of work experience, preferably in IT projects, process improvement, or a related field.

Preferred Certifications
NA

Knowledge & Skills

Exceptional written and verbal skills. Strong business experience in multiple business sub-domains. Strong relationship management skills. Excellent project management and process development skills. 

  • Certifications such as CISA, CPA, CA or MBA are plus 
  • Strong IT & audit experience, particularly IT controls or related financial risk assessment 
  • Experience with IT SOX controls a strong plus 
  • Understanding of application risk assessment and management methodologies 
  • Experience working with internal audit departments 
  • Strong documentation and communication (verbal and written) skills 
  • Demonstrated understanding of information management systems and infrastructure including IT processes, tools, controls & KPI's 
  • Strong communication and presentation skills 
  • Knowledge in the areas of robotics, automation via macros, workflows and Power bi connections would be a plus 


Cross-Org Skills
• Effective Communication
• Results Orientation
• Learning Agility
• Digital Fluency
• Customer Centricity

Impact & Scope
• Impacts function and leads and/or provides expertise to functional project teams and may participate in cross-functional initiatives.

Complexity
• Works on complex problems where analysis of situations or data requires an in-depth evaluation of multiple factors.

Disclaimer
• This job description describes the general nature and level of work performed in this role. It is not intended to be an exhaustive list of all duties, skills, responsibilities, knowledge, etc. These may be subject to change and additional functions may be assigned as needed by management.

The base pay range for this role is $90,100 to $171,200 annually with additional opportunities for pay in the form of bonus and/or equity (applies to US candidates only).  Pay varies by work location, job-related knowledge, skills, and experience.

Benefits:

HP offers a comprehensive benefits package for this position, including:

  • Health insurance
  • Dental insurance
  • Vision insurance
  • Long term/short term disability insurance
  • Employee assistance program
  • Flexible spending account
  • Life insurance
  • Generous time off policies, including; 
    • 4-12 weeks fully paid parental leave based on tenure
    • 11 paid holidays
    • Additional flexible paid vacation and sick leave (US benefits overview)

The compensation and benefits information is accurate as of the date of this posting. The Company reserves the right to modify this information at any time, with or without notice, subject to applicable law.

Job -

Information Technology

Schedule -

Full time

Shift -

No shift premium (United States of America)

Travel -

Relocation -

Equal Opportunity Employer (EEO)

HP, Inc. provides equal employment opportunity to all employees and prospective employees, without regard to race, color, religion, sex, national origin, ancestry, citizenship, sexual orientation, age, disability, or status as a protected veteran, marital status, familial status, physical or mental disability, medical condition, pregnancy, genetic predisposition or carrier status, uniformed service status, political affiliation or any other characteristic protected by applicable national, federal, state, and local law(s).

Please be assured that you will not be subject to any adverse treatment if you choose to disclose the information requested. This information is provided voluntarily. The information obtained will be kept in strict confidence.

If you’d like more information about HP’s EEO Policy or your EEO rights as an applicant under the law, please click here: Equal Employment Opportunity is the Law Equal Employment Opportunity is the Law – Supplement

Hewlett Packard (HP)

Website: http://www.hp.com/

Headquarter Location: Palo Alto, California, United States

Employee Count: 10001+

Year Founded: 1939

IPO Status: Public

Last Funding Type: Post-IPO Equity

Industries: Computer ⋅ Consumer Electronics ⋅ Hardware ⋅ IT Infrastructure ⋅ Software