IT and Information Security Compliance Assistant

Responsibilities

• Maintain the IT risk control matrix, implement SOX IT general controls (ITGC) and information security compliance testing.
• Support the audit work of compliance projects such as ISO 27001, CMMC, and GDPR.
• Participate in the annual IT risk assessment, identify key financial systems and their control measures.
• Assist internal and external auditors in completing ITGC tests, follow up on issue rectification.
• Evaluate third-party SOC reports and propose suggestions for system control optimization.
• Support the implementation of compliance requirements before the launch of new systems.
• Promote the automation of control processes to improve efficiency.

Qualifications

• Bachelor's degree or above, major in computer science, accounting or related fields, with more than 5 years of IT audit/compliance experience.
• Familiar with control frameworks such as SOX, ITGC, COBIT, NIS...