Description:
This position will support the hiring team in Finance's strategic initiatives which would require experience in internal controls identification, design, and documentation; risk assessment processes; governance, risk & compliance; and controls testing. Experience analyzing SOC 1 Type 2 reports, working with external auditors, executing SSAE16/18, and SOX 302 and 404 experience a plus.
Job Description: The Senior Controls Analyst has extensive experience with controls projects from either a Business Process controls or an ITGC controls perspective. Having experience implementing and evidencing controls in an environment, specially review of SSAE18 SOC 1 reports is a significant plus.
The Controls Analyst must be capable of performing the following tasks for controls enhancement, documentation, and testing:
Assessing business user process controls and ITGCs as to whether they have a financial statement impact.
Assessing vendors for ICFR/financial statement impact
Identifying and assessing control gaps
Discussing, extracting, and documenting business process controls/process information (e.g. accounts payable, lending processes).
Assessing the user control documentation to determine whether the control is adequately designed to meet the user control objective.
Ideally, the Controls Analyst has SSAE18 experience as a reviewer of the report from a user’s perspective and/or as a preparer of SOC1 reports, as well as additional experience with third party risk management activities.
This position requires excellent business user interviewing and research skills, as well as demonstrated exceptional verbal and written communication skills. The analyst is adept in presenting results and recommendations to management and is comfortable working with uncertainty and multiple projects in a fast-paced environment. An ability to build strong relationships and work cross functionally is key. He/she must have experience with assessing controls for adequacy and identifying deficiencies.
The Controls Analyst is experienced with integrated controls reviews. He/she can process both business process controls, as well as IT controls associated with the business process. We are not looking for a deeply technical mainframe/network/database person to test General Computer controls.
Required:
The ideal candidate will have a B.S. in Accounting (or related area) for business process (or a related area) for ITGC, audit background, controls experience, business process walkthrough/documentation experience, Microsoft Office, Visio, and the appropriate soft skills required to forge productive relationships with the various business units within NFCU.
Preferred:
The ideal candidate will have current Certified Public Accountant (CPA) credentials, “Big 4” consulting experience, current Certified Internal Auditor (CIA) credentials, practical experience with an enterprise GRC, and a Financial Services background.