Security Analyst III

Position: Security Analyst III
Location: Allentown, Pennsylvania (Hybrid)
Duration: 6 months
Job ID: 173908

Job Overview:
The Security Analyst III will play a critical role in evaluating the overall effectiveness and efficiency of the IT SOX Compliance program and controls. The candidate will identify practical improvement areas to strengthen control execution and explore opportunities for automation. This hybrid role requires in-office presence on Tuesday, Wednesday, and Thursday in Allentown.

Responsibilities:

• Authoring Control Narratives: Develop, maintain, and update detailed control narratives for ITGCs, application controls, and system development controls. Ensure documentation accurately reflects current control design and operating procedures. Collaborate with internal stakeholders to validate control narratives and address gaps.
• Assessing New Applications for SOX Impact: Evaluate new and existing IT systems and applications (including third-party solutions) to determine SOX relevance and impact. Conduct risk assessments and scoping determinations for in-scope applications. Recommend control requirements and remediation actions to ensure compliance with SOX and ICFR.
• Review and Disposition of SOC1 Reports: Partner with Control Owners to assist in the review of SOC1 reports for third-party service providers. Assess the adequacy of controls described in SOC1 reports and determine their impact on SOX compliance. Document findings and recommend actions for any identified gaps or deficiencies.
• Control Testing and Remediation: Perform testing of controls for operational effectiveness. Track and validate remediation of control deficiencies through to closure. Advise management on appropriate remedial actions and monitor progress.
• Compliance and Reporting: Provide periodic updates and reporting to management on SOX compliance status, control effectiveness, and remediation activities. Represent IT in meetings and communications with internal and external audit teams.
• Continuous Improvement: Identify and implement operational improvements to drive compliance, efficiency, and education in the IT SOX environment. Train and mentor IT control owners to help improve the quality and consistency of control evidence.
• Collaboration and Knowledge Sharing: Work closely with cross-functional teams to integrate security controls and processes into infrastructure and applications.

Qualifications:

• 10+ years of experience supporting enterprise IT SOX programs for Fortune 500 companies.
• Strong understanding of SOX requirements, control frameworks, and ITGCs.
• Experience in authoring control narratives, performing SOX risk assessments, and testing controls.
• Familiarity with SOC1 report review and disposition.
• Excellent communication, analytical, and project management skills.
• Strong attention to detail and organizational skills required.

About PTR Global: PTR Global is a leading provider of information technology and workforce solutions. PTR Global has become one of the largest providers in its industry, with over 5000 professionals providing services across the U.S. and Canada. For more information visit www.ptrglobal.com

At PTR Global, we understand the importance of your privacy and security. We NEVER ASK job applicants to:

• Pay any fee to be considered for, submitted to, or selected for any opportunity.
• Purchase any product, service, or gift cards from us or for us as part of an application, interview, or selection process.
• Provide sensitive financial information such as credit card numbers or banking information. Successfully placed or hired candidates would only be asked for banking details after accepting an offer from us during our official onboarding processes as part of payroll setup.

Pay Range:$75 - $85/hr. W2

The specific compensation for this position will be determined by several factors, including the scope, complexity, and location of the role, as well as the cost of labor in the market; the skills, education, training, credentials, and experience of the candidate; and other conditions of employment. Our full-time consultants have access to benefits, including medical, dental, vision, and 401K contributions, as well as PTO, sick leave, and other benefits mandated by applicable state or localities where you reside or work.

If you receive a suspicious message, email, or phone call claiming to be from PTR Global do not respond or click on any links. Instead, contact us directly at +1 214-740-2424. To report any concerns, please email us at [email protected]

#LI-PS4