Senior Cyber Compliance & Audit analyst

Thomson Reuters is hiring a Senior Cyber Compliance & Audit analyst to assess and improve the control testing process. The role involves working collaboratively with control owners and stakeholders to identify non-compliance issues and recommend changes to address them. The ideal candidate will have a strong background in IT, accounting, or finance and experience in SoX, ITGC, SOC, PCI within audit or consulting firms.

Requirements

• Bachelor's degree in IT, Accounting, Finance or equivalent education and experience
• At least 4+ years of relevant work experience in SoX, ITGC, SOC, PCI within Audit, Big 5, consulting firms or as line 1a or line 1b completing IT-IS control testing or working within a Governance or Compliance function across Financial Services organizations
• One of these certifications in order of preference is essential CISA, CISSP, CCAK, CISM, CRISC or ISO (preferred)
• Strong ethical principles and understanding of business and IS ethics
• Awareness about common security vulnerabilities of web and cloud applications and operating techniques from sources such as SANS, OWASP Top10 and Cloud Security Alliance (CSA)
• Experience in testing Cloud controls and related technologies will be an asset
• Excellent oral and written communication skills in English. Additional expertise in French, Spanish or another language will be an asset
• Knowledge about GRC platforms like ServiceNow, Process Unity, RSA Archer, MetricStream and like

Benefits

• Hybrid Work Model
• Flexibility & Work-Life Balance
• Career Development and Growth
• Industry Competitive Benefits
• Culture
• Social Impact
• Making a Real-World Impact