IT Compliance Analyst

Job Summary

A company is looking for an IT Compliance (GRC) Analyst to support IT compliance programs related to SOX and HIPAA.

Key Responsibilities

• Support SOX and HIPAA controls by designing, documenting, and maintaining ITGCs and operational controls
• Maintain documentation such as control narratives, flowcharts, risk and control matrices, and evidence repositories
• Perform risk assessments and gap analyses for IT systems that handle PHI and financial data

Required Qualifications

• Bachelor's degree in a related field or equivalent experience
• Relevant experience with IT controls, IT audit, SOX testing, IT risk, HIPAA, or related functions
• Practical understanding of HIPAA Security and Privacy requirements
• Technical foundation with identity and access management, change management, and SDLC
• Hands-on experience collecting and organizing audit evidence and documenting control testing procedures