IT Compliance Analyst-Security ITGC Specialist

Macy's Inc. - Johns Creek, Georgia

Job Overview:
 
The Compliance Analyst – Security/ITGC (Information Technology General Controls) Specialist develops and implements Security and IT General Control (ITGC) compliance strategies and tracks compliance with both Macy’s Tech and Macy’s Inc. policies and procedures. Performs control testing/special assignments that review procedures and controls over software applications and operating systems to ensure the company is effectively utilizing and controlling its assets. Perform other duties as assigned. This position can be based in either Johns Creek, GA or San Francisco; CA. Performs other duties as assigned.
 
Essential Functions:
 
• Conducts control testing and/or special reviews of the Company’s controls and procedures over the Company’s Information Technology (IT) infrastructure, systems development and business applications in support of the annual risk-based audit plan for design and operating effectiveness of internal controls, including Sarbanes-Oxley related controls.
• Conducts interviews with the process and business owners at all levels and across the enterprise to gather information, ascertain key risks, areas of concerns, and the expected internal control that should be in place. Independently design and execute control tests and assess the adequacy and effectiveness of the business area’s processes, policies or controls. Identify gaps/opportunities/key risks and work with business partners to develop corrective actions to address gaps or mitigating controls.
• Help plan regular control testing through a contribution of ideas on the methodology and approach for upcoming assignments based on review of prior work papers, business data flows and audit reports. 
• Perform comprehensive analysis of information elicited through interviews and document review by demonstrating professional skepticism and appropriate follow-up.
• Present and confirm findings and/or gaps and the related corrective action to business partners and technology management.
• Document assessment and test results according to departmental standards.  Accurately prepare written audit finding/issue and applying judgment and analysis to recommend the related corrective action.  
• As necessary based on experience and need, coach and provide on-the-job training to other compliance analysts and control owners.
• Regular, dependable attendance & punctuality.
 
Decision Making:
 
• Ability to work independently with minimal supervision and manage activities with cross-functional business stakeholders, including Security and Internal/External Audit.
• Considers how a decision could impact the customer before taking action.
 
Qualifications:
 
Education/Experience:
 
• 4-year bachelor’s degree required (in related field of study a plus e.g., Management Information Systems, Information Technology, Computer Science).
• 2-3 years of relevant prior work experience required, with related industry work experience preferred.
• Professional certification preferred (i.e., CISA, CISSP, CIA). 
 
Communication Skills:
 
• Effectively communicate with individuals at various levels of the Company.
• Strong written and verbal/interpersonal communication skills are necessary to negotiate and to present findings in a clear and professional manner.
 
Mathematical Skills:
 
• Must have the ability to compute rates, ratios, and percentages, and the ability to work with mathematical concepts such as probability and statistical inference.
 
Reasoning Ability:
 
• This position requires the ability to work independently, demonstrate excellent judgment, professional skepticism, and a strong learning aptitude to understand the Company’s business processes.
 
Physical Demands:
 
• This position involves extended periods of sitting and the extensive use of computer and the office equipment.
• May involve stooping, kneeling, or crouching.
• Involves close vision, color vision, depth perception, and focus adjustment.
 
Other Skills:
 
• Strong analytic and problem-solving ability, with the ability to review and complete a risk-based overview and evaluation of an IT operation’s overall control environment.
 
Work Hours:
 
• Ability to work a flexible schedule based on department and company needs.
 
Company Profile:
 
Macy’s Inc. is one of the nation’s premier retailers.  With fiscal 2016 sales of $25.778 billion and approximately 140,000 employees, the company operates more than 700 department stores under the nameplates Macy’s and Bloomingdale’s, and approximately 125 specialty stores that include Bloomingdale’s The Outlet, Bluemercury and Macy’s Backstage.  Macy’s, Inc. operates stores in 45 states, the District of Columbia, Guam and Puerto Rico, as well as macys.com, bloomingdales.com and bluemercury.com.  Bloomingdale’s stores in Dubai and Kuwait are operated by Al Tayer Group LLC under license agreements.  Macy’s, Inc. has corporate offices in Cincinnati, Ohio and New York, New York.
 
 
This job description is not all inclusive. Macy’s Inc. reserves the right to amend this job description at any time. Macy's Inc. is an Equal Opportunity Employer, committed to a diverse and inclusive work environment.
Unable to retrieve job information. This job may not be available anymore. Sorry for the inconvenience.
Posted: 30+ days ago

About Macy's Inc.


Macy's Inc. Logo
Macy's, Inc., with corporate offices in Cincinnati and New York, is one of the nation's premier retailers, with fiscal 2015 sales of $27.079 billion. The company operates about 870 stores in 45 states, the District of Columbia, Guam and Puerto Rico unde... more

Get more Job Training at

Franklin Pierce University
Franklin Pierce University
Visit our partner site