Scheduled Maintenance: sisystems.com will be Unavailable from Friday, Dec 9th @ 8:00 PM MST - Saturday, Dec 10th @ 8:30 AM MST for regularly scheduled maintenance.
Login | Register

Intermediate Risk and Audit Analyst to support client's consistent adaptation of the IT risk management framework and applicable risks

Job Type: Contract
Positions to fill: 1
Start Date: Dec 05, 2022
Job End Date: Jun 04, 2023
Pay Rate: Hourly: Negotiable
Job ID: 125438
Location: Toronto
Apply
Our valued public sector client is seeking an Int. Risk and Audit Analyst to support client's consistent adaptation of the IT risk management framework and applicable risks.

Duration: Initial 6-month contract + 6 month extension
Location: Toronto - Hybrid (1 day/week on site)

Must Haves:
  • Minimum of 3 -5 years of relevant professional experience supporting IT Risk & Audit
  • Experience with IT risk management frameworks and IT Risk Policy
Responsibilities:
  • Assist in the mitigation of IT risks, identify new ways to further enhance the risk mitigation
  • Act as central point of contact for IT for all business and external stakeholders as it pertains to audit and compliance as well as internal control reviews.
  • Coordinate internal control for financial reporting reviews and audits
  • Coordinate the ITC engagement and response to all control review request
  • Coordinate the production of evidence to support the control objective
  • Engage the appropriate ITC area to document the control and provide evidence
  • Coordinate the remediation by ITC of any gaps related to the controls
  • Coordinate all internal audit of ITC areas and document all findings in risk register;
  • Contribute to the identification and monitoring of gaps related to compliance controls and identify emerging risks
  • Provide monthly and quarterly reporting to management and relevant client's stakeholders
  • Prepare monthly report for manager to demonstrate at a minimum current risk posture, number of outstanding risks, number of new risks and number of closed risks;
  • Aid in dashboard for ITC senior management to provide risk information by cluster or business area;
  • Prepare quarterly reports for business stakeholders including Internal Audit, Enterprise Risk Management,
  • Internal Controls. Maintain effective communication linkages and relationships with both IT and business areas to discuss and resolve
  • issues, and exchange information and provide guidance on IT risks.
  • Liaise with IT and business areas to ensure that risk monitoring, management and reporting of key risk exposures are appropriately reported, documented and accepted;
  • Assist IT areas to manage their risks by applying the IT Risk Policy and demonstrate the value of compliance to the policy;
  • Advise business areas on technical elements of risk management, which involves risk identification, assessment, mitigation planning, monitoring